VYPR

CodeInterpreter

by Binary Husky

CVEs (1)

  • CVE-2024-10950Mar 20, 2025
    risk 0.00cvss epss 0.01

    In binary-husky/gpt_academic version <= 3.83, the plugin `CodeInterpreter` is vulnerable to code injection caused by prompt injection. The root cause is the execution of user-provided prompts that generate untrusted code without a sandbox, allowing the execution of parts of the…