Package impact
PyPI / metagpt
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-6110 | critical | 9.8 | 9.8 | 2mo ago | MetaGPT has an eval injection in metagpt/strategy/tot.py | |
| CVE-2026-5974 | critical | 9.8 | 9.8 | 2mo ago | FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/tools/libs/terminal.py | |
| CVE-2026-5973 | critical | 9.8 | 9.8 | 2mo ago | FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/utils/common.py | |
| CVE-2026-5972 | critical | 9.8 | 9.8 | 2mo ago | FoundationAgents MetaGPT vulnerable to os command injection via the Terminal.run_command | |
| CVE-2026-5971 | critical | 9.8 | 9.8 | 2mo ago | A flaw has been found in FoundationAgents MetaGPT up to 0.8.1. This vulnerability affects the function ActionNode.xml_fill of the file metagpt/actions/action_node.py of the component XML Handler. Exe… | |
| CVE-2026-5970 | critical | 9.8 | 9.8 | 2mo ago | MetaGPT has an Injection issue |