Medium severity5.3NVD Advisory· Published Apr 16, 2024· Updated Apr 15, 2026

CVE-2024-31451

Description

DocsGPT is a GPT-powered chat for documentation. DocsGPT is vulnerable to unauthenticated limited file write in routes.py. This vulnerability is fixed in 0.8.1.

Patches

d36f58230a32

https://github.com/arc53/DocsGPTvia osv

commit

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/arc53/DocsGPT/commit/d36f58230a326ecacb9c32a4ae8eac65666044f2nvd
github.com/arc53/DocsGPT/security/advisories/GHSA-p5qc-vj2x-9rjpnvd
securitylab.github.com/advisories/GHSL-2023-250_DocsGPTnvd

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000