CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/04/09 5:0 p.m.•17 views

CVE-2026-5970 FoundationAgents MetaGPT HumanEvalBenchmark/MBPPBenchmark check_solution code injection

A vulnerability was detected in FoundationAgents MetaGPT up to 0.8.1. This affects the function checksolution of the component HumanEvalBenchmark/MBPPBenchmark. Performing a manipulation results in code injection. The attack may be initiated remotely. The exploit is now public and may be used. Th...

7.5CVSS0.00092EPSS

ATTACKERKB•added 2026/04/09 5:0 p.m.•1 views

CVE-2026-5970

7.5CVSS6.8AI score0.00092EPSS

Exploits1References6Affected Software1

Vulnrichment•added 2026/04/09 5:0 p.m.•0 views

CVE-2026-5970 FoundationAgents MetaGPT HumanEvalBenchmark/MBPPBenchmark check_solution code injection

7.5CVSS6.8AI score0.00092EPSS

CVE•added 2026/04/09 5:0 p.m.•2 views

CVE-2026-5970

FoundationAgents MetaGPT up to 0.8.1 is affected by a vulnerability in the check_solution function of HumanEvalBenchmark/MBPPBenchmark. A manipulation can cause code injection, with a remote attack potential. The exploit is public, and the project was informed via a pull request but has not respo...

9.8CVSS6.8AI score0.00092EPSS

Exploits1References6Affected Software1

HackRead•added 2026/04/09 1:50 p.m.•3 views

Claude Code Can Be Manipulated via CLAUDE.md to Run SQL Injection Attacks

LayerX researchers have discovered how to bypass Claude Code’s safety rules using the CLAUDE.md file. This exploit allows…...

5.9AI score

Exploits0

EUVD•added 2026/04/09 6:30 a.m.•1 views

EUVD-2026-20858

A vulnerability was found in jeecgboot JimuReport up to 2.3.0. The affected element is the function DriverManager.getConnection of the file /drag/onlDragDataSource/testConnection of the component Data Source Handler. Performing a manipulation of the argument dbUrl results in code injection. The...

NVD•added 2026/04/09 6:16 a.m.•1 views

Exploits0References7

CVE-2026-5848

5.8CVSS0.00023EPSS

Cvelist•added 2026/04/09 5:15 a.m.•24 views

CVE-2026-5848 jeecgboot JimuReport Data Source testConnection DriverManager.getConnection code injection

5.8CVSS0.00023EPSS

CVE•added 2026/04/09 5:15 a.m.•8 views

CVE-2026-5848

CVE-2026-5848 affects jeecgboot JimuReport up to version 2.3.0. The vulnerability lies in the Data Source Handler’s testConnection path, specifically the function DriverManager.getConnection, where manipulating the argument dbUrl can lead to code injection. The issue can be exploited remotely and...

Vulnrichment•added 2026/04/09 5:15 a.m.•0 views

CVE-2026-5848 jeecgboot JimuReport Data Source testConnection DriverManager.getConnection code injection

ATTACKERKB•added 2026/04/09 5:15 a.m.•1 views

CVE-2026-5848

Exploits0References6Affected Software1

CNNVD•added 2026/04/09 12:0 a.m.•3 views

MetaGPT 代码注入漏洞

MetaGPT is a multi-agent framework developed by MetaGPT Inc. Versions of MetaGPT 0.8.1 and earlier contained a code injection vulnerability. This vulnerability stemmed from operations on the checksolution function within the HumanEvalBenchmark/MBPPBenchmark component, which could lead to code...

9.8CVSS7.2AI score0.00092EPSS

CNNVD•added 2026/04/09 12:0 a.m.•2 views

Code-Projects Simple IT Discussion Forum 代码注入漏洞

Code-Projects Simple IT Discussion Forum is a simple forum developed by Code-Projects as open source. Version 1.0 of Code-Projects Simple IT Discussion Forum has a code injection vulnerability. This vulnerability stems from incorrect handling of the Category parameter in the file/edit-category.ph...

5.3CVSS5.7AI score0.00013EPSS

Exploits0References5

Positive Technologies•added 2026/04/09 12:0 a.m.•1 views

PT-2026-31587

Name of the Vulnerable Software and Affected Versions jeecgboot JimuReport versions up to 2.3.0 Description A code injection issue exists in the Data Source Handler component of jeecgboot JimuReport, specifically within the DriverManager.getConnection function located in the...