Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

151 matches found

EUVD
EUVDadded 2026/04/20 9:30 a.m.1 views

EUVD-2026-23785

A security flaw has been discovered in TransformerOptimus SuperAGI up to 0.0.14. Affected by this vulnerability is the function getproject/updateproject/getprojectsorganisation of the file superagi/controllers/project.py. The manipulation results in authorization bypass. The attack may be perform...

6.5CVSS6.1AI score0.00043EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/20 9:30 a.m.0 views

EUVD-2026-23801

A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function Upload of the file superagi/controllers/resources.py of the component Multipart Upload Handler. This manipulation of the argument Name causes path traversal. It is possible to initia...

7.5CVSS5.4AI score0.00094EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/20 9:30 a.m.3 views

EUVD-2026-23803

A security vulnerability has been detected in TransformerOptimus SuperAGI up to 0.0.14. This affects the function extractwithbs4/extractwith3k/extractwithlxml of the file superagi/helper/webpageextractor.py of the component WebScraperTool. Such manipulation leads to server-side request forgery. I...

6.5CVSS5.2AI score0.00043EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/20 9:30 a.m.0 views

EUVD-2026-23789

A vulnerability was determined in TransformerOptimus SuperAGI up to 0.0.14. This impacts the function getagentexecution/updateagentexecution of the file superagi/controllers/agentexecution.py of the component Agent Execution Endpoint. Executing a manipulation of the argument agentexecutionid can...

6.5CVSS6.2AI score0.0002EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/20 9:30 a.m.0 views

EUVD-2026-23791

A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function deleteagent/stopschedule/getscheduledata of the file superagi/controllers/agent.py. The manipulation of the argument agentid leads to authorization bypass. The attack is possible to be carried out...

6.5CVSS6.2AI score0.00043EPSS
Exploits0References5
NVD
NVDadded 2026/04/20 8:16 a.m.0 views

CVE-2026-6615

A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function Upload of the file superagi/controllers/resources.py of the component Multipart Upload Handler. This manipulation of the argument Name causes path traversal. It is possible to initia...

7.5CVSS0.00094EPSS
Exploits0References4
NVD
NVDadded 2026/04/20 7:16 a.m.0 views

CVE-2026-6613

A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function deleteagent/stopschedule/getscheduledata of the file superagi/controllers/agent.py. The manipulation of the argument agentid leads to authorization bypass. The attack is possible to be carried out...

6.5CVSS0.00043EPSS
Exploits0References4
NVD
NVDadded 2026/04/20 7:16 a.m.0 views

CVE-2026-6614

A security flaw has been discovered in TransformerOptimus SuperAGI up to 0.0.14. Affected by this vulnerability is the function getproject/updateproject/getprojectsorganisation of the file superagi/controllers/project.py. The manipulation results in authorization bypass. The attack may be perform...

6.5CVSS0.00043EPSS
Exploits0References4
NVD
NVDadded 2026/04/20 7:16 a.m.0 views

CVE-2026-6612

A vulnerability was determined in TransformerOptimus SuperAGI up to 0.0.14. This impacts the function getagentexecution/updateagentexecution of the file superagi/controllers/agentexecution.py of the component Agent Execution Endpoint. Executing a manipulation of the argument agentexecutionid can...

6.5CVSS0.0002EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/20 7:0 a.m.1 views

CVE-2026-6615

A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function Upload of the file superagi/controllers/resources.py of the component Multipart Upload Handler. This manipulation of the argument Name causes path traversal. It is possible to initia...

7.5CVSS5.4AI score0.00094EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/20 7:0 a.m.2 views

CVE-2026-6615 TransformerOptimus SuperAGI Multipart Upload resources.py upload path traversal

A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function Upload of the file superagi/controllers/resources.py of the component Multipart Upload Handler. This manipulation of the argument Name causes path traversal. It is possible to initia...

7.5CVSS5.4AI score0.00094EPSS
Exploits0References4
CVE
CVEadded 2026/04/20 7:0 a.m.4 views

CVE-2026-6615

CVE-2026-6615 — TransformerOptimus SuperAGI Multipart Upload path traversal Affected: TransformerOptimus SuperAGI (up to 0.0.14). The vulnerability is in the Multipart Upload Handler, specifically the Upload function in superagi/controllers/resources.py. Manipulating the Name argument enables pat...

7.5CVSS6.7AI score0.00094EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/20 7:0 a.m.26 views

CVE-2026-6615 TransformerOptimus SuperAGI Multipart Upload resources.py upload path traversal

A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function Upload of the file superagi/controllers/resources.py of the component Multipart Upload Handler. This manipulation of the argument Name causes path traversal. It is possible to initia...

7.5CVSS0.00094EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/20 6:45 a.m.0 views

CVE-2026-6614 TransformerOptimus SuperAGI project.py get_projects_organisation authorization

A security flaw has been discovered in TransformerOptimus SuperAGI up to 0.0.14. Affected by this vulnerability is the function getproject/updateproject/getprojectsorganisation of the file superagi/controllers/project.py. The manipulation results in authorization bypass. The attack may be perform...

6.5CVSS6.1AI score0.00043EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/20 6:45 a.m.24 views

CVE-2026-6614 TransformerOptimus SuperAGI project.py get_projects_organisation authorization

A security flaw has been discovered in TransformerOptimus SuperAGI up to 0.0.14. Affected by this vulnerability is the function getproject/updateproject/getprojectsorganisation of the file superagi/controllers/project.py. The manipulation results in authorization bypass. The attack may be perform...

6.5CVSS0.00043EPSS
Exploits0References4
CVE
CVEadded 2026/04/20 6:45 a.m.4 views

CVE-2026-6614

TransformerOptimus SuperAGI

6.5CVSS5.3AI score0.00043EPSS
Exploits0References4
CVE
CVEadded 2026/04/20 6:30 a.m.4 views

CVE-2026-6613

The affected software is TransformerOptimus SuperAGI (up to 0.0.14). The vulnerability exists in the functions delete_agent, stop_schedule, and get_schedule_data in superagi/controllers/agent.py, where manipulating the argument agent_id leads to an authorization bypass. It can be exploited remote...

6.5CVSS5.4AI score0.00043EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/20 6:30 a.m.1 views

CVE-2026-6613 TransformerOptimus SuperAGI agent.py get_schedule_data authorization

A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function deleteagent/stopschedule/getscheduledata of the file superagi/controllers/agent.py. The manipulation of the argument agentid leads to authorization bypass. The attack is possible to be carried out...

6.5CVSS6.2AI score0.00043EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/20 6:30 a.m.0 views

CVE-2026-6613

A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function deleteagent/stopschedule/getscheduledata of the file superagi/controllers/agent.py. The manipulation of the argument agentid leads to authorization bypass. The attack is possible to be carried out...

6.5CVSS5.4AI score0.00043EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/04/20 6:15 a.m.4 views

CVE-2026-6612

The vulnerability CVE-2026-6612 affects TransformerOptimus SuperAGI up to version 0.0.14, specifically the Agent Execution Endpoint’s get_agent_execution/update_agent_execution in superagi/controllers/agent_execution.py. The underlying issue is an authorization bypass caused by manipulating the a...

6.5CVSS5.4AI score0.0002EPSS
Exploits0References4
Rows per page
Query Builder