Which versions of Gpt Researcher are affected by CVE-2026-5633?

gpt-researcher versions up to 3.4.3 contain an unauthenticated server-side request forgery vulnerability that allows remote attackers to manipulate data sources, potentially compromising…

Is there a public PoC exploit available for CVE-2026-5633?

Yes, a public proof-of-concept exploit is available for CVE-2026-5633. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-5633?

Within 24 hours: identify all gpt-researcher deployments in production and air-gap or restrict network access to the ws endpoint pending further assessment. Within 7 days: implement WAF rules blocking suspicious source_urls parameters, isolate affected instances to trusted networks only, and contact gpt-researcher maintainers for status on patch timeline. Within 30 days: evaluate migration to alternative research tools, upgrade to patched version if released, or implement mandatory authentication and request validation layers in front of the ws endpoint.

Gpt Researcher CVE-2026-5633

Q: What is the CVSS score of CVE-2026-5633?

CVE-2026-5633 has a CVSS 4.0 base score of 5.5 (Medium). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-19190 MEDIUM

Server-Side Request Forgery (SSRF) (CWE-918)

2026-04-06 VulDB

GHSA-8p84-j4x4-c993

SSRF Gpt Researcher

5.5

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

5.5 MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

CVSS changed

Apr 29, 2026 - 01:11 NVD

6.9 (MEDIUM) 5.5 (MEDIUM)

PoC Detected

Apr 07, 2026 - 13:20 vuln.today

Public exploit code

EUVD ID Assigned

Apr 06, 2026 - 07:45 euvd

EUVD-2026-19190

Analysis Generated

Apr 06, 2026 - 07:45 vuln.today

CVE Published

Apr 06, 2026 - 07:00 nvd

MEDIUM 6.9

DescriptionCVE.org

A vulnerability was determined in assafelovic gpt-researcher up to 3.4.3. Affected is an unknown function of the component ws Endpoint. Executing a manipulation of the argument source_urls can lead to server-side request forgery. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

AnalysisAI

Server-side request forgery in gpt-researcher versions up to 3.4.3 allows unauthenticated remote attackers to manipulate the source_urls parameter at the ws endpoint, enabling partial confidentiality, integrity, and availability impacts. A publicly available exploit exists via GitHub issue #1696, though the vendor has not responded to early disclosure. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Vulnerability AssessmentAI

Risk Assessment	Real-world risk is elevated despite moderate CVSS 7.3 score. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An unauthenticated remote attacker connects to the gpt-researcher WebSocket endpoint and sends a crafted message with a malicious source_urls parameter pointing to http://169.254.169.254/latest/meta-data/iam/security-credentials/ (AWS metadata service). The vulnerable server processes this request and forwards the attacker-controlled URL, retrieving temporary AWS credentials which are returned in the response or logged server-side. …
Remediation	Upgrade to a patched version once available; monitor the official GitHub repository at https://github.com/assafelovic/gpt-researcher/ for security updates, though vendor has not responded to disclosure at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: identify all gpt-researcher deployments in production and air-gap or restrict network access to the ws endpoint pending further assessment. …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-5633 vulnerability details – vuln.today

Back