CVE-2024-9418
20.03.2025, 10:15
In version 0.0.14 of transformeroptimus/superagi, the API endpoint `/api/users/get/{id}` returns the user's password in plaintext. This vulnerability allows an attacker to retrieve the password of another user, leading to potential account takeover.EnginsightAwaiting analysis
This vulnerability is currently awaiting analysis.
Common Weakness Enumeration