CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

112 matches found

GPT Academic v1.3.9 - Open Redirect

An open redirect vulnerability exists in GPT Academic v1.3.9, where the file parameter in the /file= endpoint can be manipulated to redirect users to malicious websites. This could facilitate phishing attacks by tricking users into visiting attacker-controlled URLs. id: CVE-2024-10812 info: name:...

6.1CVSS6.2AI score0.00632EPSS

Exploits1References1

RedhatCVE•added 2026/01/24 9:15 a.m.•6 views

CVE-2026-0764

GPT Academic upload Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Authentication is not required to exploit this vulnerability. The specific flaw exists within...

9.8CVSS6.6AI score0.03813EPSS

Exploits0References1

RedhatCVE•added 2026/01/24 9:15 a.m.•4 views

CVE-2026-0762

GPT Academic streamdaas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Interaction with a malicious DAAS server is required to exploit this vulnerability but...

8.1CVSS6.6AI score0.00791EPSS

Exploits0References1

OSV•added 2026/01/23 4:16 a.m.•2 views

CVE-2026-0764

9.8CVSS6.7AI score

Exploits0References1

OSV•added 2026/01/23 4:16 a.m.•2 views

CVE-2026-0763

GPT Academic runinsubprocesswrapperfunc Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Authentication is not required to exploit this vulnerability. The specific...

9.8CVSS6.7AI score

Exploits0References1

NVD•added 2026/01/23 4:16 a.m.•6 views

CVE-2026-0764

9.8CVSS0.03813EPSS

Exploits0References1

NVD•added 2026/01/23 4:16 a.m.•3 views

CVE-2026-0763

9.8CVSS0.04157EPSS

Exploits0References1

OSV•added 2026/01/23 4:16 a.m.•2 views

CVE-2026-0762

8.1CVSS6.7AI score

Exploits0References1

ATTACKERKB•added 2026/01/23 3:28 a.m.•5 views

CVE-2026-0764

9.8CVSS6.4AI score0.03813EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/01/23 3:28 a.m.•4 views

CVE-2026-0764 GPT Academic upload Deserialization of Untrusted Data Remote Code Execution Vulnerability

9.8CVSS6.6AI score0.03813EPSS

Exploits0References1

CVE•added 2026/01/23 3:28 a.m.•7 views

CVE-2026-0763

GPT Academic is affected by CVE-2026-0763 via the run_in_subprocess_wrapper_func deserialization flaw, enabling remote code execution with root privileges. The issue stems from insufficient validation of user-supplied data, allowing deserialization of untrusted data, and does not require authenti...

9.8CVSS6.6AI score0.04157EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/01/23 3:28 a.m.•30 views

CVE-2026-0763 GPT Academic run_in_subprocess_wrapper_func Deserialization of Untrusted Data Remote Code Execution Vulnerability

9.8CVSS0.04157EPSS

Exploits0References1

Vulnrichment•added 2026/01/23 3:28 a.m.•1 views

CVE-2026-0763 GPT Academic run_in_subprocess_wrapper_func Deserialization of Untrusted Data Remote Code Execution Vulnerability

9.8CVSS6.6AI score0.04157EPSS

Exploits0References1

Vulnrichment•added 2026/01/23 3:28 a.m.•1 views

CVE-2026-0762 GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability

8.1CVSS6.6AI score0.00791EPSS

Exploits0References1

ATTACKERKB•added 2026/01/23 3:28 a.m.•2 views

CVE-2026-0762

8.1CVSS6.4AI score0.00791EPSS

Exploits0References2Affected Software1

CVE•added 2026/01/23 3:28 a.m.•7 views

CVE-2026-0762

CVE-2026-0762 affects GPT Academic's stream_daas deserialization of untrusted data, enabling remote code execution. The flaw arises from improper validation of user-supplied data, allowing an attacker who can contact a malicious DAAS server to trigger deserialization and execute code with root pr...

8.1CVSS6.6AI score0.00791EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/01/23 12:0 a.m.•2 views

GPT Academic Code Issues and Vulnerabilities

GPT Academic is an interface developed by binary-husky developers, designed to provide practical interactions for large language models like GPT/GLM. There are code vulnerabilities in GPT Academic; these vulnerabilities stem from the runinsubprocesswrapperfunc function, which lacks validation of...

9.8CVSS7.6AI score0.04157EPSS

Exploits0References1

CNNVD•added 2026/01/23 12:0 a.m.•2 views

GPT Academic Code Issues and Vulnerabilities

GPT Academic is an interface developed by binary-husky developers, designed to provide practical interactions for large language models like GPT/GLM. GPT Academic has code vulnerabilities; these vulnerabilities stem from the lack of validation for data provided by users at the upload endpoint,...

9.8CVSS7.6AI score0.03813EPSS

Exploits0References1

Positive Technologies•added 2026/01/09 12:0 a.m.•4 views

PT-2026-1994

Name of the Vulnerable Software and Affected Versions GPT Academic affected versions not specified Description A flaw exists that allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Authentication is not required to exploit this issue. The vulnerability is...

9.8CVSS9.1AI score0.03813EPSS

Exploits0References2

Zero Day Initiative•added 2026/01/09 12:0 a.m.•4 views

(0Day) GPT Academic run_in_subprocess_wrapper_func Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the runinsubprocesswrapperfunc function. The issue results from the lack of proper validati...

9.8CVSS7.7AI score0.04157EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by