CVE-2026-42345 | labring FastGPT up to 4.14.11 utils.ts isInternalAddress server-side request forgery (GHSA-jhqw-944x-xh94)

A vulnerability was found in labring FastGPT up to 4.14.11. It has been declared as critical. This issue affects the function isInternalAddress of the file packages/service/common/system/utils.ts. Executing a manipulation can lead to server-side request forgery.

This vulnerability is registered as CVE-2026-42345. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More