โ† All reports

The delete_api_key and edit_api_key functions in the TransformerOptimus SuperAGI software up to version 0.0.14 contain a vulnerability that could allow unauthorized access or modification of API keys.

CybersecurityTechnologyConflictInformation SecurityApr 20, 2026score 0.173 posts ยท 0 replies across 1 instances
This thread reports three vulnerabilities in the TransformerOptimus SuperAGI software up to version 0.0.14, affecting functions related to organisation updates, vector database management, and API key management. These vulnerabilities have a CVSS score ranging from 5.3 to 6.9, indicating moderate to high severity. The issues highlight potential security risks in the software's core functionalities.

Claims

The delete_api_key and edit_api_key functions in the TransformerOptimus SuperAGI software up to version 0.0.14 contain a vulnerability that could allow unauthorized access or modification of API keys.
Parent: Software VulnerabilitiesEntity: TransformerOptimus SuperAGISub-entity: API Key ManagementImpact: negativeDate: Apr 20, 2026Target: The presence and severity of the vulnerability in the API Key Management functionality.
The get_vector_db_details function in the TransformerOptimus SuperAGI software up to version 0.0.14 has a flaw that could expose sensitive information about the vector database.
Parent: Software VulnerabilitiesEntity: TransformerOptimus SuperAGISub-entity: Vector Database ManagementImpact: negativeDate: Apr 20, 2026Target: The presence and severity of the flaw in the Vector Database Management functionality.
The update_organisation function in the TransformerOptimus SuperAGI software up to version 0.0.14 contains a vulnerability that could allow unauthorized modification of organisation data.
Parent: Software VulnerabilitiesEntity: TransformerOptimus SuperAGISub-entity: Organisation UpdatesImpact: negativeDate: Apr 20, 2026Target: The presence and severity of the vulnerability in the Organisation Updates functionality.

Source posts

@[email protected]
๐Ÿšจ EUVD-2026-23717 ๐Ÿ“Š Score: 6.9/10 (CVSS v3.1) ๐Ÿ“ฆ Product: SuperAGI, SuperAGI, SuperAGI (+11 more) ๐Ÿข Vendor: transformeroptimus ๐Ÿ“… Updated: 2026-04-19 ๐Ÿ“ A flaw has been found in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function get_vector_db_details of the file superagi/controllers/vector_dbs.py of the component Vector Database Managem... ๐Ÿ”— https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23717 #cybersecurity #infosec #euvd #cve #vulnerability
1 boosts ยท 0 favs ยท 0 replies ยท Apr 20, 2026
#cybersecurity#infosec#euvd#cve#vulnerability
@[email protected]
๐Ÿšจ EUVD-2026-23723 ๐Ÿ“Š Score: 5.3/10 (CVSS v3.1) ๐Ÿ“ฆ Product: SuperAGI, SuperAGI, SuperAGI (+11 more) ๐Ÿข Vendor: transformeroptimus ๐Ÿ“… Updated: 2026-04-19 ๐Ÿ“ A vulnerability was determined in TransformerOptimus SuperAGI up to 0.0.14. This issue affects the function update_organisation of the file superagi/controllers/organisation.py of the component Organisation Update E... ๐Ÿ”— https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23723 #cybersecurity #infosec #euvd #cve #vulnerability
1 boosts ยท 0 favs ยท 0 replies ยท Apr 20, 2026
#cybersecurity#infosec#euvd#cve#vulnerability
@[email protected]
๐Ÿšจ EUVD-2026-23719 ๐Ÿ“Š Score: 5.3/10 (CVSS v3.1) ๐Ÿ“ฆ Product: SuperAGI, SuperAGI, SuperAGI (+11 more) ๐Ÿข Vendor: transformeroptimus ๐Ÿ“… Updated: 2026-04-19 ๐Ÿ“ A vulnerability has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete_api_key/edit_api_key of the file superagi/controllers/api_key.py of the component API Key Management Endpo... ๐Ÿ”— https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23719 #cybersecurity #infosec #euvd #cve #vulnerability
1 boosts ยท 0 favs ยท 0 replies ยท Apr 20, 2026
#cybersecurity#infosec#euvd#cve#vulnerability
@[email protected]
๐Ÿšจ EUVD-2026-23785 ๐Ÿ“Š Score: 5.3/10 (CVSS v3.1) ๐Ÿ“ฆ Product: SuperAGI, SuperAGI, SuperAGI (+11 more) ๐Ÿข Vendor: transformeroptimus ๐Ÿ“… Updated: 2026-04-20 ๐Ÿ“ A security flaw has been discovered in TransformerOptimus SuperAGI up to 0.0.14. Affected by this vulnerability is the function get_project/update_project/get_projects_organisation of the file superagi/controllers/p... ๐Ÿ”— https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23785 #cybersecurity #infosec #euvd #cve #vulnerability
1 boosts ยท 0 favs ยท 0 replies ยท Apr 20, 2026
#cybersecurity#infosec#euvd#cve#vulnerability
@[email protected]
๐Ÿšจ EUVD-2026-23789 ๐Ÿ“Š Score: 5.3/10 (CVSS v3.1) ๐Ÿ“ฆ Product: SuperAGI, SuperAGI, SuperAGI (+11 more) ๐Ÿข Vendor: transformeroptimus ๐Ÿ“… Updated: 2026-04-20 ๐Ÿ“ A vulnerability was determined in TransformerOptimus SuperAGI up to 0.0.14. This impacts the function get_agent_execution/update_agent_execution of the file superagi/controllers/agent_execution.py of the component A... ๐Ÿ”— https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23789 #cybersecurity #infosec #euvd #cve #vulnerability
1 boosts ยท 0 favs ยท 0 replies ยท Apr 20, 2026
#cybersecurity#infosec#euvd#cve#vulnerability
@[email protected]
๐Ÿšจ EUVD-2026-23801 ๐Ÿ“Š Score: 6.9/10 (CVSS v3.1) ๐Ÿ“ฆ Product: SuperAGI, SuperAGI, SuperAGI (+11 more) ๐Ÿข Vendor: transformeroptimus ๐Ÿ“… Updated: 2026-04-20 ๐Ÿ“ A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function Upload of the file superagi/controllers/resources.py of the component Multipart Upload Handler. This... ๐Ÿ”— https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23801 #cybersecurity #infosec #euvd #cve #vulnerability
1 boosts ยท 0 favs ยท 0 replies ยท Apr 20, 2026
#cybersecurity#infosec#euvd#cve#vulnerability