8 matches found
Exploit for CVE-2025-0868
Penetration Testing Project Report: Exploiting CVE-2025-0868...
📄 DocsGPT 0.12.0 Remote Code Execution
DocsGPT version 0.12.0 suffers from a remote code execution vulnerability. Exploit Title: DocsGPT 0.12.0 - Remote Code Execution Date: 09/04/2025 Exploit Author: Shreyas Malhotra OSMSEC Vendor Homepage: https://github.com/arc53/docsgpt Software Link:...
DocsGPT 0.12.0 - Remote Code Execution
Exploit Title: DocsGPT 0.12.0 - Remote Code Execution Date: 09/04/2025 Exploit Author: Shreyas Malhotra OSMSEC Vendor Homepage: https://github.com/arc53/docsgpt Software Link: https://github.com/arc53/DocsGPT/archive/refs/tags/0.12.0.zip Version: 0.8.1 through 0.12.0 Tested on: Debian Linux/Ubunt...
CVE-2025-0868
creationtimestamp| type| source ---|---|--- 2025-02-20 14:49:35+00:00| seen| https://t.me/cvedetector/18542 2025-02-20 15:12:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3limlaauq6h2y 2025-02-20 23:26:54+00:00| seen| Telegram/YcLyfgjxS8wFVsXueB-Fpx0MMnYTtaDaq1jL96EujmeZ3VmW...
CVE-2025-0868
A vulnerability, that could result in Remote Code Execution RCE, has been found in DocsGPT. Due to improper parsing of JSON data using eval an unauthorized attacker could send arbitrary Python code to be executed via /api/remote endpoint.. This issue affects DocsGPT: from 0.8.1 through 0.12.0...
CVE-2025-0868 Remote Code Execution in DocsGPT
A vulnerability, that could result in Remote Code Execution RCE, has been found in DocsGPT. Due to improper parsing of JSON data using eval an unauthorized attacker could send arbitrary Python code to be executed via /api/remote endpoint.. This issue affects DocsGPT: from 0.8.1 through 0.12.0...
CVE-2025-0868 Remote Code Execution in DocsGPT
A vulnerability, that could result in Remote Code Execution RCE, has been found in DocsGPT. Due to improper parsing of JSON data using eval an unauthorized attacker could send arbitrary Python code to be executed via /api/remote endpoint.. This issue affects DocsGPT: from 0.8.1 through 0.12.0...
CVE-2025-0868
DocsGPT (versions 0.8.1–0.12.0) contains a Remote Code Execution vulnerability caused by unsafe JSON parsing with eval() in the /api/remote endpoint. Unauthenticated, network-accessible attackers can inject arbitrary Python code, enabling full server compromise with high impact on confidentiality...