Live Latest activity →

Fastgpt Fastgpt Vulnerabilities

3 advisories affecting Fastgpt Fastgpt

3

Total CVEs

1

Critical

2

High

CVE-2026-40351

Apr 17, 2026

Critical (9.8)

FastGPT is an AI Agent building platform. In versions prior to 4.14.9.5, the password-based login endpoint uses TypeScript type assertion without runtime validation, allowing an unauthenticated attack...

Read Advisory

CVE-2026-40352

Apr 17, 2026

High (8.8)

FastGPT is an AI Agent building platform. In versions prior to 4.14.9.5, the password change endpoint is vulnerable to NoSQL injection. An authenticated attacker can bypass the "old password" verifica...

Read Advisory

CVE-2026-34163

Mar 31, 2026

High (7.7)

FastGPT is an AI Agent building platform. Prior to version 4.14.9.5, FastGPT's MCP (Model Context Protocol) tools endpoints (/api/core/app/mcpTools/getTools and /api/core/app/mcpTools/runTool) accept ...

Read Advisory

Never Miss a Critical Alert

CVE advisories, breach reports, and threat intel — delivered daily to your inbox.