VYPR

Vendor CVEs

Labring

All CVEs

28 total · sorted by risk
  • CVE-2026-34162CriMar 31, 2026
    risk 0.58cvss 10.0epss 0.00

    FastGPT is an AI Agent building platform. Prior to version 4.14.9.5, the FastGPT HTTP tools testing endpoint (/api/core/app/httpTools/runTool) is exposed without any authentication. This endpoint acts as a full HTTP proxy — it accepts a user-supplied baseUrl, toolPath, HTTP…

  • CVE-2026-42302CriMay 8, 2026
    risk 0.57cvss 9.8epss 0.01

    FastGPT is an AI Agent building platform. From version 4.14.10 to before version 4.14.13, the agent-sandbox component of FastGPT is vulnerable to unauthenticated Remote Code Execution (RCE). The startup script entrypoint.sh initializes code-server with the --auth none flag and…

  • CVE-2026-40351CriApr 17, 2026
    risk 0.57cvss 9.8epss 0.01

    FastGPT is an AI Agent building platform. In versions prior to 4.14.9.5, the password-based login endpoint uses TypeScript type assertion without runtime validation, allowing an unauthenticated attacker to pass a MongoDB query operator object (e.g., {"$ne": ""}) as the password…

  • CVE-2026-44285HigMay 29, 2026
    risk 0.50cvss 7.7epss 0.00

    FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, a Server-Side Request Forgery (SSRF) vulnerability allows an authenticated attacker to bypass the global isInternalAddress network protection and make arbitrary HTTP GET requests to internal network services. This…

  • CVE-2026-40352HigApr 17, 2026
    risk 0.50cvss 8.8epss 0.00

    FastGPT is an AI Agent building platform. In versions prior to 4.14.9.5, the password change endpoint is vulnerable to NoSQL injection. An authenticated attacker can bypass the "old password" verification by injecting MongoDB query operators. This allows an attacker who has…

  • CVE-2026-40252HigApr 10, 2026
    risk 0.46cvss 8.1epss 0.00

    FastGPT is an AI Agent building platform. Prior to 4.14.10.4, Broken Access Control vulnerability (IDOR/BOLA) allows any authenticated team to access and execute applications belonging to other teams by supplying a foreign appId. While the API correctly validates the team token,…

  • CVE-2026-42345HigMay 8, 2026
    risk 0.43cvss 7.7epss 0.00

    FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts blocks cloud metadata endpoints using a fullUrl.startsWith() check against a hardcoded list. This check can be bypassed…

  • CVE-2026-34163HigMar 31, 2026
    risk 0.43cvss 7.7epss 0.00

    FastGPT is an AI Agent building platform. Prior to version 4.14.9.5, FastGPT's MCP (Model Context Protocol) tools endpoints (/api/core/app/mcpTools/getTools and /api/core/app/mcpTools/runTool) accept a user-supplied URL parameter and make server-side HTTP requests to it without…

  • CVE-2026-44287MedMay 29, 2026
    risk 0.41cvss 6.3epss 0.00

    FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, the JavaScript sandbox worker at projects/code-sandbox/src/pool/worker.ts:356 blocks dynamic import() with the regex /\bimport\s*\(/.test(code). JavaScript syntax accepts a block comment between import and (; the…

  • CVE-2026-44284MedMay 8, 2026
    risk 0.34cvss 6.3epss 0.00

    FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected internal/private network URLs, but the MCP tool create/update endpoints could still…

  • CVE-2026-42344MedMay 8, 2026
    risk 0.34cvss 6.3epss 0.00

    FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts is vulnerable to DNS rebinding (TOCTOU — Time-of-Check to Time-of-Use). The function resolves the hostname via…

  • CVE-2026-42343MedMay 8, 2026
    risk 0.34cvss epss 0.00

    FastGPT is an AI Agent building platform. In versions 4.14.13 and prior, the code-sandbox component suffers from insufficient resource isolation and uncontrolled resource consumption. The service relies solely on an application-level soft limit (a 500ms polling interval) for…

  • CVE-2026-40100MedApr 10, 2026
    risk 0.27cvss 5.3epss 0.00

    FastGPT is an AI Agent building platform. Prior to 4.14.10.3, the /api/core/app/mcpTools/runTool endpoint accepts arbitrary URLs without authentication. The internal IP check in isInternalAddress() only blocks private IPs when CHECK_INTERNAL_IP=true, which is not the default.…

  • CVE-2026-44286LowMay 8, 2026
    risk 0.08cvss epss 0.00

    FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows attackers (or authenticated users with App editing privileges) to send arbitrary HTTP requests to internal/private network addresses.…

  • CVE-2026-33075Mar 20, 2026
    risk 0.00cvss epss 0.00

    FastGPT is an AI Agent building platform. In versions 4.14.8.3 and below, the fastgpt-preview-image.yml workflow is vulnerable to arbitrary code execution and secret exfiltration by any external contributor. It uses pull_request_target (which runs with access to repository…

  • CVE-2026-32128Mar 11, 2026
    risk 0.00cvss epss 0.00

    FastGPT is an AI Agent building platform. In 4.14.7 and earlier, FastGPT's Python Sandbox (fastgpt-sandbox) includes guardrails intended to prevent file writes (static detection + seccomp). These guardrails are bypassable by remapping stdout (fd 1) to an arbitrary writable file…

  • CVE-2026-26075Feb 12, 2026
    risk 0.00cvss epss 0.00

    FastGPT is an AI Agent building platform. Due to the fact that FastGPT's web page acquisition nodes, HTTP nodes, etc. need to initiate data acquisition requests from the server, there are certain security issues. In addition to implementing internal network isolation in the…

  • CVE-2026-26003Feb 10, 2026
    risk 0.00cvss epss 0.00

    FastGPT is an AI Agent building platform. From 4.14.0 to 4.14.5, attackers can directly access the plugin system through FastGPT/api/plugin/xxx without authentication, thereby threatening the plugin system. This may cause the plugin system to crash and the loss of plugin…

  • CVE-2025-62612Oct 22, 2025
    risk 0.00cvss epss 0.00

    FastGPT is an AI Agent building platform. Prior to version 4.11.1, in the workflow file reading node, the network link is not security-verified, posing a risk of SSRF attacks. This issue has been patched in version 4.11.1.

  • CVE-2025-52552Jun 21, 2025
    risk 0.00cvss epss 0.00

    FastGPT is an AI Agent building platform. Prior to version 4.9.12, the LastRoute Parameter on login page is vulnerable to open redirect and DOM-based XSS. Improper validation and lack of sanitization of this parameter allows attackers execute malicious JavaScript or redirect…

  • CVE-2025-49131Jun 9, 2025
    risk 0.00cvss epss 0.00

    FastGPT is an open-source project that provides a platform for building, deploying, and operating AI-driven workflows and conversational agents. The Sandbox container (fastgpt-sandbox) is a specialized, isolated environment used by FastGPT to safely execute user-submitted or…

  • CVE-2025-27600Mar 6, 2025
    risk 0.00cvss epss 0.00

    FastGPT is a knowledge-based platform built on the LLMs. Since the web crawling plug-in does not perform intranet IP verification, an attacker can initiate an intranet IP request, causing the system to initiate a request through the intranet and potentially obtain some private…

  • CVE-2023-50253Jan 3, 2024
    risk 0.00cvss epss 0.01

    Laf is a cloud development platform. In the Laf version design, the log uses communication with k8s to quickly retrieve logs from the container without the need for additional storage. However, in version 1.0.0-beta.13 and prior, this interface does not verify the permissions of…

  • CVE-2023-48225Dec 12, 2023
    risk 0.00cvss epss 0.01

    Laf is a cloud development platform. Prior to version 1.0.0-beta.13, the control of LAF app enV is not strict enough, and in certain scenarios of privatization environment, it may lead to sensitive information leakage in secret and configmap. In ES6 syntax, if an obj directly…

  • CVE-2023-36815Jul 3, 2023
    risk 0.00cvss epss 0.00

    Sealos is a Cloud Operating System designed for managing cloud-native applications. In version 4.2.0 and prior, there is a permission flaw in the Sealos billing system, which allows users to control the recharge resource account `sealos[.] io/v1/Payment`, resulting in the…

  • CVE-2023-33190Jun 29, 2023
    risk 0.00cvss epss 0.01

    Sealos is an open source cloud operating system distribution based on the Kubernetes kernel. In versions of Sealos prior to 4.2.1-rc4 an improper configuration of role based access control (RBAC) permissions resulted in an attacker being able to obtain cluster control…

  • CVE-2019-2191Sep 27, 2019
    risk 0.00cvss epss 0.00

    In LG's LAF component, there is a possible leak of information in a protected disk partition due to a missing bounds check. This could lead to local information disclosure via USB with User execution privileges needed. User interaction is not required for exploitation.Product:…

  • CVE-2019-2190Sep 27, 2019
    risk 0.00cvss epss 0.00

    In LG's LAF component, there is a possible leak of information in a protected disk partition due to a missing bounds check. This could lead to local information disclosure via USB with User execution privileges needed. User interaction is not required for exploitation.Product:…