CVE-2026-44286 | labring FastGPT up to 4.14.16 HTTP Request fetchData server-side request forgery (GHSA-xpx6-xcpf-76qg)

Inserito da Angelo Barbosa | Mag 9, 2026 | CVE

A vulnerability described as critical has been identified in labring FastGPT up to 4.14.16. Affected is the function fetchData of the component HTTP Request Handler. Executing a manipulation can lead to server-side request forgery.

This vulnerability is handled as CVE-2026-44286. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-44286 | labring FastGPT up to 4.14.16 HTTP Request fetchData server-side request forgery (GHSA-xpx6-xcpf-76qg)

Post correlati

CVE-2024-4645 | SourceCodester Prison Management System 1.0 changepassword.php cross site scripting

CVE-2024-3087 | PHPGurukul Emergency Ambulance Hiring Portal 1.0 Ambulance Tracking Page ambulance-tracking.php searchdata sql injection

CVE-2024-0699 | AI Engine Plugin up to 2.1.4 on WordPress add_image_from_url unrestricted upload

CVE-2024-1800 | Progress Telerik Report Server prior 10.0.24.130 deserialization