Known Vulnerabilities for AI Copilot by Quadlayers
Listed below are 10 of the newest known vulnerabilities associated with "AI Copilot" by "Quadlayers".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59515 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Sergey AIWU ai-copilot-... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-58617 json | Improper access control in Microsoft 365 Copilot for iOS allows an unauthorized attacker to elevate privileges over a network... | Not Provided | 2026-07-14 | 2026-07-14 |
| CVE-2026-55145 json | Improper neutralization of special elements used in a command ('command injection') in Outlook Copilot allows an authorized a... | Not Provided | 2026-07-14 | 2026-07-14 |
| CVE-2026-54130 json | Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a n... | Not Provided | 2026-06-18 | 2026-06-24 |
| CVE-2026-50519 json | Initialization of a resource with an insecure default in GitHub Copilot and Visual Studio Code allows an unauthorized attacke... | Not Provided | 2026-06-19 | 2026-06-26 |
| CVE-2026-50510 json | Improper restriction of names for files and other resources in Github Copilot allows an unauthorized attacker to execute code... | Not Provided | 2026-07-14 | 2026-07-15 |
| CVE-2026-48561 json | Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthoriz... | Not Provided | 2026-07-14 | 2026-07-15 |
| CVE-2026-47645 json | Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker ... | Not Provided | 2026-06-19 | 2026-06-26 |
| CVE-2026-47644 json | Improper neutralization of special elements in output used by a downstream component ('injection') in Copilot Chat (Microsoft... | Not Provided | 2026-06-04 | 2026-06-06 |
| CVE-2026-47282 json | Insufficiently protected credentials in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to disclose inf... | Not Provided | 2026-07-14 | 2026-07-15 |