CVE-2026-0764 | GPT Academic Upload deserialization

January 9, 2026 Yanac

A vulnerability was found in GPT Academic. It has been declared as very critical. This vulnerability affects unknown code of the component Upload. The manipulation results in deserialization.

This vulnerability is reported as CVE-2026-0764. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2026-0765 | Open WebUI PIP install_frontmatter_requirements command injection
CVE-2026-0761 | Foundation Agents MetaGPT actionoutput_str_to_mapping code injection