2 matches found
CVE-2026-5631
creationtimestamp| type| source ---|---|--- 2026-04-06 09:16:06+00:00| published-proof-of-concept| Telegram/5ijLrALAuqXYdoOjryiznkXUmcGfws-2xPX0cuo3yo2hM 2026-04-06 10:58:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mit47mt5u52j...
CVE-2026-5631 assafelovic gpt-researcher ws Endpoint server_utils.py extract_command_data code injection
A vulnerability has been found in assafelovic gpt-researcher up to 3.4.3. This affects the function extractcommanddata of the file backend/server/serverutils.py of the component ws Endpoint. Such manipulation of the argument args leads to code injection. The attack may be performed from remote. T...