67 matches found
CVE-2026-5971
A flaw has been found in FoundationAgents MetaGPT up to 0.8.1. This vulnerability affects the function ActionNode.xmlfill of the file metagpt/actions/actionnode.py of the component XML Handler. Executing a manipulation can lead to improper neutralization of directives in dynamically evaluated cod...
CVE-2026-5970 FoundationAgents MetaGPT HumanEvalBenchmark/MBPPBenchmark check_solution code injection
A vulnerability was detected in FoundationAgents MetaGPT up to 0.8.1. This affects the function checksolution of the component HumanEvalBenchmark/MBPPBenchmark. Performing a manipulation results in code injection. The attack may be initiated remotely. The exploit is now public and may be used. Th...
CVE-2026-5970
A vulnerability was detected in FoundationAgents MetaGPT up to 0.8.1. This affects the function checksolution of the component HumanEvalBenchmark/MBPPBenchmark. Performing a manipulation results in code injection. The attack may be initiated remotely. The exploit is now public and may be used. Th...
CVE-2026-5970
FoundationAgents MetaGPT up to 0.8.1 is affected by a vulnerability in the check_solution function of HumanEvalBenchmark/MBPPBenchmark. A manipulation can cause code injection, with a remote attack potential. The exploit is public, and the project was informed via a pull request but has not respo...
PT-2026-31708
Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A flaw exists in the get mime type function within the metagpt/utils/common.py file. This allows for operating system command injection, potentially enabling remote execution of command...
PT-2026-31707
Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A flaw exists in the Terminal.run command function within the metagpt/tools/libs/terminal.py library. This allows for os command injection, potentially enabling remote exploitation. The...
PT-2026-31722
Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A flaw exists in FoundationAgents MetaGPT up to version 0.8.1 due to an os command injection issue within the Bash.run function located in the metagpt/tools/libs/terminal.py library. Th...