GPT-Pilot Command Injection Vulnerability Allowing Remote Code Execution

Vulnerability

A command injection vulnerability has been identified in GPT-Pilot, specifically in the Executor.run() method, prior to commit 0819827ce20346ef5f25b3fe29293cb448840565. This vulnerability allows for remote code execution by injecting arbitrary shell commands. The issue arises because the application accepts free-text input without proper validation, which is then directly passed to asyncio.create_subprocess_shell() for execution. As a result, an attacker can manipulate the intended command and execute malicious code with the same privileges as the GPT-Pilot process.

Impact

Exploitation of this vulnerability allows for remote code execution on the server where GPT-Pilot is running, with the same user privileges as the GPT-Pilot process.

Added: May 11, 2026, 4:49 PM

Updated: May 11, 2026, 4:49 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.5

remediation

0.0

relevance

8.0

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.5

remediation

0.0

relevance

8.0

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GPT-Pilot Command Injection Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Affected Products

GPT-Pilot

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating