CVE-2026-33075 | labring FastGPT up to 4.14.8.3 pull_request_target code download

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability labeled as problematic has been found in labring FastGPT up to 4.14.8.3. The impacted element is the function pull_request_target. Such manipulation leads to download of code without integrity check.

This vulnerability is referenced as CVE-2026-33075. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-33075 | labring FastGPT up to 4.14.8.3 pull_request_target code download

Post correlati

CVE-2025-6091 | H3C GR-3000AX V100R007L50 /routing/goform/aspForm UpdateWanParamsMulti/UpdateIpv6Params param buffer overflow

CVE-2026-2207 | WeKan up to 8.20 Activity Publication activities.js LinkedBoardActivitiesBleed information disclosure

CVE-2022-45356 | Muffingroup Betheme Plugin up to 26.6.1 on WordPress authorization

CVE-2024-29466 | lsgwr Spring Boot Online Exam 0.9 FileTransUtil.java path traversal