Sglang - Sglang - CRITICAL - CVE-2026-5760. The reranking endpoint of SGLang allows for execution of arbitrary code when a model file containing a malicious tokenizer.chat_template is loaded. This occurs due to the rendering of Jinja2 chat templates in an unsandboxed environment, leading to potential exploitation if an attacker can manipulate the model input.