GHSA-8j86-h8gg-797punknown
An issue in Open Source GPT Researcher v3.3.7 allows attackers to execute arbitrary commands on a...
🔗 CVE IDs covered (1)
📋 Description
An issue in Open Source GPT Researcher v3.3.7 allows attackers to execute arbitrary commands on a victim system via user interaction with a crafted HTML page.
🔗 References (5)
- https://nvd.nist.gov/vuln/detail/CVE-2025-65720
- https://github.com/assafelovic/gpt-researcher
- https://www.ox.security/blog/gpt-researcher-remote-code-execution
- https://www.ox.security/blog/mcp-supply-chain-advisory-rce-vulnerabilities-across-the-ai-ecosystem
- https://github.com/advisories/GHSA-8j86-h8gg-797p