Vulnerabilities > Agpt > Autogpt > 0.5.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-20 | CVE-2024-8156 | Unspecified vulnerability in Agpt Autogpt A command injection vulnerability exists in the workflow-checker.yml workflow of significant-gravitas/autogpt. | 9.8 |
| 2024-06-06 | CVE-2024-1880 | Unspecified vulnerability in Agpt Autogpt An OS command injection vulnerability exists in the MacOS Text-To-Speech class MacOSTTS of the significant-gravitas/autogpt project, affecting versions up to v0.5.0. | 7.8 |
| 2024-06-06 | CVE-2024-1881 | Unspecified vulnerability in Agpt Autogpt 0.5.0 AutoGPT, a component of significant-gravitas/autogpt, is vulnerable to an improper neutralization of special elements used in an OS command ('OS Command Injection') due to a flaw in its shell command validation function. | 9.8 |
| 2024-06-06 | CVE-2024-1879 | Unspecified vulnerability in Agpt Autogpt 0.5.0 A Cross-Site Request Forgery (CSRF) vulnerability in significant-gravitas/autogpt version v0.5.0 allows attackers to execute arbitrary commands on the AutoGPT server. | 8.8 |