CVE-2025-31490 | Significant-Gravitas AutoGPT up to 0.6.0 IPv6 Address request.py validate_url server-side request forgery (GHSA-wvjg-9879-3m7w)

A vulnerability was found in Significant-Gravitas AutoGPT up to 0.6.0. It has been declared as critical. Affected by this vulnerability is the function validate_url of the file autogpt_platform/backend/backend/util/request.py of the component IPv6 Address Handler. The manipulation leads to server-side request forgery.

This vulnerability is known as CVE-2025-31490. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More