EUVD-2026-13806

A vulnerability has been found in eosphoros-ai DB-GPT up to 0.7.5. This issue affects the function moduleplugin.refreshplugins of the file packages/dbgpt-serve/src/dbgptserve/agent/hub/controller.py of the component FastAPI Endpoint. Such manipulation leads to unrestricted upload. It is possible ...

PT-2026-26673

A vulnerability has been found in eosphoros-ai DB-GPT up to 0.7.5. This issue affects the function module plugin.refresh plugins of the file packages/dbgpt-serve/src/dbgpt serve/agent/hub/controller.py of the component FastAPI Endpoint. Such manipulation leads to unrestricted upload. It is possib...

DB-GPT 代码问题漏洞

DB-GPT is an open-source development framework for AI-native data applications by eosphoros, based on AWEL and proxies. Versions of DB-GPT 0.7.5 and earlier have code vulnerabilities. These vulnerabilities stem from the unlimited uploading feature in the function moduleplugin.refreshplugins withi...

Johnson Controls IQ series和Johnson Controls PowerG 安全漏洞

The Johnson Controls IQ series and Johnson Controls PowerG are both products of Johnson Controls, Inc.The Johnson Controls IQ series is a series of intelligent security and automation control platforms.The Johnson Johnson Controls PowerG is a communications device. A security vulnerability exists...

EUVD-2013-5032

Malware in sbrugna...

DB-GPT 命令注入漏洞

DB-GPT is an AWEL and agent-based AI native data application development framework open-sourced by eosphoros. A security vulnerability exists in DB-GPT version 0.7.0, which stems from a file upload vulnerability in agent.hub.controller.refreshplugins that could lead to the execution of arbitrary...

Design/Logic Flaw

The USB hub controller in Apple Mac OS X before 10.9 allows local users to cause a denial of service system crash via a request with a crafted 1 port or 2 port number...

CVE-2013-5192

The USB hub controller in Apple Mac OS X before 10.9 allows local users to cause a denial of service system crash via a request with a crafted 1 port or 2 port number...