cbcvebase.

Agpt Autogpt Platform vulnerabilities

15 known vulnerabilities affecting agpt/autogpt_platform.

Total CVEs
15
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH9MEDIUM3LOW1

Vulnerabilities

Page 1 of 1
CVE-2026-24780P2HIGHCVSS 8.8≥ 0.1.0, < 0.6.442026-01-29
CVE-2026-24780 [HIGH] CWE-94 CVE-2026-24780: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.44, AutoGPT Platform's block execution endpoints (both main web API and external API) allow executing blocks by UUID without checking the `disabled` flag. Any authenticated
nvd
CVE-2025-1040P2HIGHCVSS 8.8fixed in 0.4.02025-03-20
CVE-2025-1040 [HIGH] CWE-1336 CVE-2025-1040: AutoGPT versions 0.3.4 and earlier are vulnerable to a Server-Side Template Injection (SSTI) that co AutoGPT versions 0.3.4 and earlier are vulnerable to a Server-Side Template Injection (SSTI) that could lead to Remote Code Execution (RCE). The vulnerability arises from the improper handling of user-supplied format strings in the `AgentOutputBlock` implementation, where malicious input is passed to the Jinja2 templating engine without adequate securi
nvd
CVE-2026-26020P2HIGHCVSS 8.8fixed in 0.6.482026-02-12
CVE-2026-26020 [HIGH] CWE-285 CVE-2026-26020: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to 0.6.48, an authenticated user could achieve Remote Code Execution (RCE) on the backend server by embedding a disabled block inside a graph. The BlockInstallationBlock — a development tool capable of
nvd
CVE-2025-62615P3CRITICALCVSS 9.8fixed in 0.6.342026-02-04
CVE-2025-62615 [CRITICAL] CWE-918 CVE-2025-62615: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.34, in RSSFeedBlock, the third-party library urllib.request.urlopen is used directly to access the URL, but the input URL is not filtered, which will cause SSRF vulnera
nvd
CVE-2025-62616P3CRITICALCVSS 9.8fixed in 0.6.342026-02-04
CVE-2025-62616 [CRITICAL] CWE-918 CVE-2025-62616: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.34, in SendDiscordFileBlock, the third-party library aiohttp.ClientSession().get is used directly to access the URL, but the input URL is not filtered, which will cause
nvd
CVE-2025-53944P3HIGHCVSS 7.7v0.6.132025-07-30
CVE-2025-53944 [HIGH] CWE-285 CVE-2025-53944: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents. In v0.6.15 and below, the external API's get_graph_execution_results endpoint has an authorization bypass vulnerability. While it correctly validates user access to the graph_id, it fails to verify ownership of the graph_exec_id parameter,
nvd
CVE-2025-31491P3HIGHCVSS 8.6fixed in 0.6.12025-04-15
CVE-2025-31491 [HIGH] CWE-200 CVE-2025-31491: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to 0.6.1, AutoGPT allows of leakage of cross-domain cookies and protected headers in requests redirect. AutoGPT uses a wrapper around the requests python library, located in autogpt_platform/backend/bac
nvd
CVE-2026-22038P3HIGHCVSS 8.1fixed in 0.6.462026-02-04
CVE-2026-22038 [HIGH] CWE-532 CVE-2026-22038: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.46, the AutoGPT platform's Stagehand integration blocks log API keys and authentication secrets in plaintext using logger.info() statements. This occurs in three separate b
nvd
CVE-2025-22603P3HIGHCVSS 8.1fixed in 0.4.22025-03-10
CVE-2025-22603 [HIGH] CWE-918 CVE-2025-22603: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Versions prior to autogpt-platform-beta-v0.4.2 contains a server-side request forgery (SSRF) vulnerability inside component (or block) `Send Web Request`. The root cause is that IPV6 address is not restricted
nvd
CVE-2025-0454P3HIGHCVSS 7.5fixed in 0.4.02025-03-20
CVE-2025-0454 [HIGH] CWE-918 CVE-2025-0454: A Server-Side Request Forgery (SSRF) vulnerability was identified in the Requests utility of signifi A Server-Side Request Forgery (SSRF) vulnerability was identified in the Requests utility of significant-gravitas/autogpt versions prior to v0.4.0. The vulnerability arises due to a hostname confusion between the `urlparse` function from the `urllib.parse` library and the `requests` library. A malicious user can exploit this by submitting a specially cr
nvd
CVE-2025-31490P3HIGHCVSS 7.5fixed in 0.6.12025-04-14
CVE-2025-31490 [HIGH] CWE-918 CVE-2025-31490: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to 0.6.1, AutoGPT allows SSRF due to DNS Rebinding in requests wrapper. AutoGPT is built with a wrapper around Python's requests library, hardening the application against SSRF. The code for this wrappe
nvd
CVE-2025-32393P3MEDIUMCVSS 6.5fixed in 0.6.322026-02-05
CVE-2025-32393 [MEDIUM] CWE-770 CVE-2025-32393: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.32, there is a DoS vulnerability in ReadRSSFeedBlock. In RSSBlock, feedparser.parser is called to obtain the XML file according to the URL input by the user, parse the XM
nvd
CVE-2026-26006P3MEDIUMCVSS 6.5≥ 0.4.0, < 0.6.322026-02-10
CVE-2026-26006 [MEDIUM] CWE-1333 CVE-2026-26006: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. The autogpt before 0.6.32 is vulnerable to Regular Expression Denial of Service due to the use of regex at Code Extraction Block. The two Regex are used containing the corresponding dangerous patterns \s+[
nvd
CVE-2025-32425P4MEDIUMCVSS 5.5fixed in 0.6.322026-05-13
CVE-2025-32425 [MEDIUM] CWE-770 CVE-2025-32425: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. In AutoGPT, the execution process is recorded to the console (stdout/stderr), and deployed in container mode, which is automatically captured by Docker and stored as "container logs". However, prior to 0.6.
nvd
CVE-2025-31494P4LOWCVSS 3.5fixed in 0.6.12025-04-15
CVE-2025-31494 [LOW] CWE-200 CVE-2025-31494: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. The AutoGPT Platform's WebSocket API transmitted node execution updates to subscribers based on the graph_id+graph_version. Additionally, there was no check prohibiting users from subscribing with another user
nvd