SSRF in Labring Fastgpt

CVE-2026-44286

FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows attackers (or authenticated users with App editing privileges) to send arbitrary HTTP requests t…

Vulnerability class: SSRF (Server-Side Request Forgery)

EPSS: 0.000 (13.5th percentile) — read the EPSS interpretation.