VYPR

localGPT

by PromtEngineer

CVEs (4)

  • CVE-2026-5002HigMar 28, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. The impacted element is the function _route_using_overviews of the file backend/server.py of the component LLM Prompt Handler. Such manipulation leads to injection. The…

  • CVE-2026-5001HigMar 28, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. The affected element is the function do_POST of the file backend/server.py. This manipulation causes unrestricted upload. The attack is possible to be carried out remotely. The…

  • CVE-2026-5000HigMar 28, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. Impacted is the function LocalGPTHandler of the file backend/server.py of the component API Endpoint. The manipulation of the argument BaseHTTPRequestHandler results in missing…

  • CVE-2026-5003MedMar 28, 2026
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. This affects the function handle_index of the file rag_system/api_server.py of the component Web Interface. Performing a manipulation results in information disclosure. It is…