CVE-2026-6110 | FoundationAgents MetaGPT up to 0.8.1 Tree-of-Thought Solver metagpt/strategy/tot.py generate_thoughts code injection (Issue 1933)

Inserito da Angelo Barbosa | Apr 11, 2026 | CVE

A vulnerability marked as critical has been reported in FoundationAgents MetaGPT up to 0.8.1. This affects the function generate_thoughts of the file metagpt/strategy/tot.py of the component Tree-of-Thought Solver. The manipulation leads to code injection.

This vulnerability is traded as CVE-2026-6110. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-6110 | FoundationAgents MetaGPT up to 0.8.1 Tree-of-Thought Solver metagpt/strategy/tot.py generate_thoughts code injection (Issue 1933)

Post correlati

CVE-2024-53614 | Thinkware Cloud APK 4.3.46 hard-coded key

CVE-2025-25744 | D-Link DIR-853 A1 1.20B07 SetDynamicDNSSettings Module Password stack-based overflow

CVE-2026-2364 | CODESYS Installer prior 2.6.1.0 toctou (VDE-2026-012)

CVE-2024-34882 | 1C-Bitrix Bitrix24 23.300.100 SMTP Server Setting insufficiently protected credentials