Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3699 matches found

Snyk
Snykadded 2026/04/09 9:31 p.m.3 views

Arbitrary Command Injection

Overview metagpt is a The Multi-Agent Framework Affected versions of this package are vulnerable to Arbitrary Command Injection via the Bash.run method in metagpt/tools/libs/terminal.py. An attacker can execute arbitrary operating system commands by supplying crafted input remotely. Remediation A...

9.8CVSS7.7AI score0.00455EPSS
Exploits1References2
OSV
OSVadded 2026/04/09 9:31 p.m.1 views

GHSA-WP29-QMVJ-FRVP FoundationAgents MetaGPT vulnerable to os command injection via the Terminal.run_command

A vulnerability has been found in FoundationAgents MetaGPT up to 0.8.1. This issue affects the function Terminal.runcommand in the library metagpt/tools/libs/terminal.py. The manipulation leads to os command injection. Remote exploitation of the attack is possible. The exploit has been disclosed ...

7.3CVSS5.2AI score0.00455EPSS
Exploits1References7
OSV
OSVadded 2026/04/09 9:31 p.m.0 views

GHSA-FCC8-4Q7H-WVWC FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/tools/libs/terminal.py

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.3CVSS6.9AI score0.00455EPSS
Exploits1References7
Vulnrichment
Vulnrichmentadded 2026/04/09 9:17 p.m.1 views

CVE-2026-40113 PraisonAI has an Argument Injection into Cloud Run Environment Variables via Unsanitized Comma in gcloud --set-env-vars

PraisonAI is a multi-agent teams system. Prior to 4.5.128, deploy.py constructs a single comma-delimited string for the gcloud run deploy --set-env-vars argument by directly interpolating openaimodel, openaikey, and openaibase without validating that these values do not contain commas. gcloud use...

8.4CVSS5.9AI score0.00035EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/04/09 9:17 p.m.14 views

CVE-2026-40113 PraisonAI has an Argument Injection into Cloud Run Environment Variables via Unsanitized Comma in gcloud --set-env-vars

PraisonAI is a multi-agent teams system. Prior to 4.5.128, deploy.py constructs a single comma-delimited string for the gcloud run deploy --set-env-vars argument by directly interpolating openaimodel, openaikey, and openaibase without validating that these values do not contain commas. gcloud use...

8.4CVSS0.00035EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/04/09 9:17 p.m.4 views

CVE-2026-40113

PraisonAI is a multi-agent teams system. Prior to 4.5.128, deploy.py constructs a single comma-delimited string for the gcloud run deploy --set-env-vars argument by directly interpolating openaimodel, openaikey, and openaibase without validating that these values do not contain commas. gcloud use...

8.4CVSS6AI score0.00035EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2026/04/09 9:17 p.m.4 views

CVE-2026-40113

PraxionAI’s CVE-2026-40113 affects PraisonAI before version 4.5.128. The flaw arises in deploy.py, which builds a single comma-delimited string for gcloud run deploy --set-env-vars by directly interpolating openai_model, openai_key, and openai_base without validating for commas. Since gcloud uses...

8.4CVSS6AI score0.00035EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2026/04/09 9:14 p.m.1 views

CVE-2026-40111

PraisonAIAgents memory/hooks.py allows OS command injection via a user-controlled string passed to subprocess.run() with shell=True before 1.5.128. No sanitization occurs, shell metacharacters are interpreted by /bin/sh, enabling execution of arbitrary commands. Two attack surfaces exist: pre_run...

9.3CVSS6AI score0.00035EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2026/04/09 8:16 p.m.2 views

CVE-2026-5974

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

9.8CVSS0.00455EPSS
Exploits1References6
Cvelist
Cvelistadded 2026/04/09 7:30 p.m.16 views

CVE-2026-5974 FoundationAgents MetaGPT terminal.py Bash.run os command injection

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.5CVSS0.00455EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/04/09 7:30 p.m.0 views

CVE-2026-5974

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.5CVSS6.8AI score0.00455EPSS
Exploits1References7Affected Software1
CVE
CVEadded 2026/04/09 7:30 p.m.3 views

CVE-2026-5974

FoundationAgents MetaGPT

9.8CVSS6.8AI score0.00455EPSS
Exploits1References6Affected Software1
CVE
CVEadded 2026/04/09 7:0 p.m.4 views

CVE-2026-5972

CVE-2026-5972 affects FoundationAgents MetaGPT (up to 0.8.1). The vulnerability lies in Terminal.run_command within metagpt/tools/libs/terminal.py, where input handling allows os command injection. This enables remote exploitation as described in multiple sources. Patch identifier d04ffc8dc67903e...

9.8CVSS6.4AI score0.00455EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/09 7:0 p.m.0 views

CVE-2026-5972 FoundationAgents MetaGPT terminal.py Terminal.run_command os command injection

A vulnerability has been found in FoundationAgents MetaGPT up to 0.8.1. This issue affects the function Terminal.runcommand in the library metagpt/tools/libs/terminal.py. The manipulation leads to os command injection. Remote exploitation of the attack is possible. The exploit has been disclosed ...

7.5CVSS6.4AI score0.00455EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/04/09 7:0 p.m.1 views

CVE-2026-5972

A vulnerability has been found in FoundationAgents MetaGPT up to 0.8.1. This issue affects the function Terminal.runcommand in the library metagpt/tools/libs/terminal.py. The manipulation leads to os command injection. Remote exploitation of the attack is possible. The exploit has been disclosed ...

7.5CVSS6.4AI score0.00455EPSS
Exploits1References6Affected Software1
OSV
OSVadded 2026/04/09 3:16 p.m.1 views

UBUNTU-CVE-2026-5441

An out-of-bounds read vulnerability exists in the DecodePsmctRle1 function of DicomImageDecoder.cpp. The PMSCTRLE1 decompression routine, which decodes the proprietary Philips Compression format, does not properly validate escape markers placed near the end of the compressed data stream. A crafte...

7.1CVSS6AI score0.00015EPSS
Exploits0References5
PyPA
PyPAadded 2026/04/09 10:16 a.m.6 views

PYSEC-2026-21

Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run read permissions, such as the Viewer role.This behavior conflicts with the FAB RBAC model, which treats XCom as a separate protected resource, and with the security mode...

6.5CVSS5.9AI score0.00013EPSS
Exploits0References3Affected Software1
Snyk
Snykadded 2026/04/09 10:7 a.m.4 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization through the waitdagrununtilfinished handler in airflow-core/src/airflow/apifastapi/coreapi/routes/public/dagrun.py. An attacker can read task result values by sending a GET request to the DAG run wait endpoint with...

7.1CVSS6AI score0.00013EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/09 12:0 a.m.1 views

PT-2026-31707

Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A flaw exists in the Terminal.run command function within the metagpt/tools/libs/terminal.py library. This allows for os command injection, potentially enabling remote exploitation. The...

7.5CVSS6.9AI score0.00455EPSS
Exploits1References10
CNNVD
CNNVDadded 2026/04/09 12:0 a.m.3 views

MetaGPT 操作系统命令注入漏洞

MetaGPT is a multi-agent framework developed by MetaGPT Inc. Versions of MetaGPT 0.8.1 and earlier contained a vulnerability related to operating system command injection. This vulnerability stemmed from the Bash.run function in the metagpt/tools/libs/terminal.py library, which could allow attack...

9.8CVSS7.1AI score0.00455EPSS
Exploits1References6
Rows per page
Query Builder