Lucene search
K

155 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:15 p.m.3 views

CVE-2026-4515

A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function codegenerate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

6.5CVSS6.1AI score0.00241EPSS
Exploits0References1
Snyk
Snyk
added 2026/03/21 4:37 p.m.2 views

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Overview metagpt is a The Multi-Agent Framework Affected versions of this package are vulnerable to Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' via the DataInterpreter component. An attacker can execute arbitrary code by injecting malicious inp...

6.5CVSS6.9AI score0.00246EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/21 3:33 p.m.4 views

EUVD-2026-14252

A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file metagpt/actions/di/writeanalysiscode.py of the component DataInterpreter. The manipulation results in injection. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS6.2AI score0.00246EPSS
Exploits0References5
NVD
NVD
added 2026/03/21 3:17 p.m.5 views

CVE-2026-4516

A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file metagpt/actions/di/writeanalysiscode.py of the component DataInterpreter. The manipulation results in injection. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS0.00246EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/21 3:2 p.m.4 views

CVE-2026-4516

A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file metagpt/actions/di/writeanalysiscode.py of the component DataInterpreter. The manipulation results in injection. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS5.4AI score0.00246EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/03/21 3:2 p.m.31 views

CVE-2026-4516 Foundation Agents MetaGPT DataInterpreter write_analysis_code.py injection

A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file metagpt/actions/di/writeanalysiscode.py of the component DataInterpreter. The manipulation results in injection. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS0.00246EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/21 3:2 p.m.2 views

CVE-2026-4516 Foundation Agents MetaGPT DataInterpreter write_analysis_code.py injection

A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file metagpt/actions/di/writeanalysiscode.py of the component DataInterpreter. The manipulation results in injection. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS5.4AI score0.00246EPSS
Exploits0References4
CVE
CVE
added 2026/03/21 3:2 p.m.15 views

CVE-2026-4516

Foundation Agents MetaGPT up to 0.8.1 is affected by a vulnerability in the DataInterpreter component, specifically the file metagpt/actions/di/write_analysis_code.py, enabling an injection due to manipulated data handling. The issue is exploitable remotely and the exploit has been made public, w...

6.5CVSS6.2AI score0.00246EPSS
Exploits0References4Affected Software1
Snyk
Snyk
added 2026/03/21 2:45 p.m.3 views

Arbitrary Code Injection

Overview metagpt is a The Multi-Agent Framework Affected versions of this package are vulnerable to Arbitrary Code Injection via the codegenerate function in the metagpt/ext/aflow/scripts/operator.py file. An attacker can execute arbitrary code by supplying crafted input to this function...

6.5CVSS7AI score0.00241EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/21 12:31 p.m.5 views

EUVD-2026-14250

A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function codegenerate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

6.5CVSS6.1AI score0.00241EPSS
Exploits0References5
NVD
NVD
added 2026/03/21 12:16 p.m.8 views

CVE-2026-4515

A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function codegenerate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

6.5CVSS0.00241EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/21 11:32 a.m.4 views

CVE-2026-4515 Foundation Agents MetaGPT operator.py code_generate code injection

A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function codegenerate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

6.5CVSS5.4AI score0.00241EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/21 11:32 a.m.29 views

CVE-2026-4515 Foundation Agents MetaGPT operator.py code_generate code injection

A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function codegenerate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

6.5CVSS0.00241EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/21 11:32 a.m.10 views

CVE-2026-4515

A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function codegenerate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

6.5CVSS5.4AI score0.00241EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/21 11:32 a.m.13 views

CVE-2026-4515

Foundation Agents MetaGPT up to 0.8.1 contains a code injection vulnerability in metagpt/ext/aflow/scripts/operator.py: function code_generate. The issue allows remote initiation and is associated with a PROOF-OF-CONCEPT exploit; exploitation status is indicated by the sources as disclosed public...

6.5CVSS6.1AI score0.00241EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.9 views

MetaGPT 安全漏洞

MetaGPT is a multi-agent framework developed by MetaGPT Inc. Versions of MetaGPT 0.8.1 and earlier contained security vulnerabilities. These vulnerabilities were caused by unknown code in the DataInterpreter component file metagpt/actions/di/writeanalysiscode.py, which could allow remote executio...

6.5CVSS6.9AI score0.00246EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/21 12:0 a.m.6 views

PT-2026-26888

A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function code generate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publi...

6.5CVSS6.1AI score0.00241EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/03/21 12:0 a.m.6 views

PT-2026-26920

A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file metagpt/actions/di/write analysis code.py of the component DataInterpreter. The manipulation results in injection. It is possible to launch the attack remotely. The exploit has...

6.5CVSS6.2AI score0.00246EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.9 views

MetaGPT 代码注入漏洞

MetaGPT is a multi-agent framework developed by MetaGPT Inc. Versions of MetaGPT 0.8.1 and earlier contained a code injection vulnerability. This vulnerability stemmed from a code injection flaw in the code generate function located in the file metagpt/ext/aflow/scripts/operator.py. It could...

6.5CVSS6.9AI score0.00241EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2026/02/19 5:24 p.m.3 views

agentiq-semantic-kernel (>=1.0.0 <=1.1.0a20250428), agixt (>=1.1.76b0 <=1.3.71) +9 more potentially affected by CVE-2026-26030 via semantic-kernel (>=0.2.9.dev0 <=1.35.3)

semantic-kernel PYPI version =0.2.9.dev0, =1.0.0, =1.1.76b0, =1.1.0, =0.1.1, =0.1.0, =0.3.0, =1.2.0, =0.2.0, =0.0.1, =1.0.0, =1.0.9 Source cves: CVE-2026-26030 Source advisory: OSV:PYSEC-2026-163...

9.9CVSS5.4AI score0.02914EPSS
Exploits2
Rows per page
Query Builder