CVE-2026-55237 | AutoGPT is a workflow automation platform for creating, depl… | CVSS 8.8 HIGH

Description

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Versions prior to 0.6.62 have a DOM-based Cross-Site Scripting (XSS) vulnerability in AutoGPT's signup page. The application improperly trusts a URL parameter (`next`), which is passed to `router.push`. An attacker can craft a malicious link that, when opened by an authenticated user, performs a client-side redirect and executes arbitrary JavaScript in the context of their browser. This could lead to credential theft, internal network pivoting, and unauthorized actions performed on behalf of the victim. Version 0.6.62 patches the issue.

Metadata

CVE ID: CVE-2026-55237
State: PUBLISHED
Assigner: GitHub_M
Reserved: 2026-06-16 16:44 UTC
Published: 2026-06-18 16:21 UTC
Last updated: 2026-06-18 17:32 UTC
Primary CWE: CWE-87
CWE-87: Improper Neutralization of Alternate XSS Syntax
Vendor / Product: Significant-Gravitas / AutoGPT
Sources: cve.org · NVD

Severity & Metrics

8.8 HIGH CVSS 3.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

SSVC — CISA Coordinator

Exploitation: PoC
Automatable: no
Tech. Impact: partial

Affected products (1)

Vendor	Product	Platform	Versions
Significant-Gravitas	AutoGPT	—	< 0.6.62

Weakness (CWE)

CWE	Source	Description
CWE-601	cna	CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
CWE-87	cna	CWE-87: Improper Neutralization of Alternate XSS Syntax

CVSS scores (1)

Score	Severity	Version	Source	Vector
8.8	HIGH	3.1	cna	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

References (1)

https://github.com/Significant-Gravitas/AutoGPT/security/advisories/GHSA-j2cp-jg5q-38wj https://github.com/Significant-Gravitas/AutoGPT/security/advisories/GHSA-j2cp-jg5q-38wj