CVE-2026-40351 | labring FastGPT up to 4.14.9.5 Password Field data query logic injection

A vulnerability, which was classified as critical, was found in labring FastGPT up to 4.14.9.5. The affected element is an unknown function of the component Password Field Handler. The manipulation results in improper neutralization of special elements in data query logic.

This vulnerability is reported as CVE-2026-40351. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More