CVE-2024-10950
published 2025-03-20CVE-2024-10950: In binary-husky/gpt_academic version <= 3.83, the plugin `CodeInterpreter` is vulnerable to code injection caused by prompt injection. The root cause is the…
PriorityP260high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
EPSS
1.35%
68.0th percentile
In binary-husky/gpt_academic version <= 3.83, the plugin `CodeInterpreter` is vulnerable to code injection caused by prompt injection. The root cause is the execution of user-provided prompts that generate untrusted code without a sandbox, allowing the execution of parts of the LLM-generated code. This vulnerability can be exploited by an attacker to achieve remote code execution (RCE) on the application backend server, potentially gaining full control of the server.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| binary-husky | binary-husky_gpt_academic | unspecified – latest | — |
| binary-husky | gpt_academic | <= 3.83 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2024-9026 php: PHP-FPM Log Manipulation Vulnerability
bugzilla·2024-10-08·CVSS 3.3
CVE-2024-9026 [LOW] CVE-2024-9026 php: PHP-FPM Log Manipulation Vulnerability
CVE-2024-9026 php: PHP-FPM Log Manipulation Vulnerability
In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through catch_workers_output = yes, it may be possible to pollute the final log or remove up to 4 characters from the log messages by manipulating log message content. Additionally, if PHP-FPM is configured to use syslog output, it may be possible to further remove log data using the same vulnerability.
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:10952 https://access.redhat.com/errata/RHSA-2024:10952
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9
Via RHSA-2024:10950 https:/
Bugzilla
CVE-2024-8927 php: cgi.force_redirect configuration is bypassable due to the environment variable collision
bugzilla·2024-10-07·CVSS 7.5
CVE-2024-8927 [HIGH] CVE-2024-8927 php: cgi.force_redirect configuration is bypassable due to the environment variable collision
CVE-2024-8927 php: cgi.force_redirect configuration is bypassable due to the environment variable collision
According to https://www.php.net/manual/en/security.cgi-bin.force-redirect.php, the configuration directive cgi.force_redirect prevents anyone from calling PHP directly with a URL like http://host.example/cgi-bin/php/secretdir/script.php.
The default value of cgi.force_redirect is 1.
But there is a bug that can cause attackers to bypass restrictions and access php-cgi directly.
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:10952 https://access.redhat.com/errata/RHSA-2024:10952
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9
Via RHSA-2024:10950 https://access.redhat.com/er
2025-03-20
Published