PT-2026-49164 · Hkuds · Ai-Trader

Davidgilmore

·

Published

2026-06-15

·

Updated

2026-06-15

·

CVE-2026-12203

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions HKUDS AI-Trader versions prior to 91a31aac1b0f4dbc6b8bef9f6eff0b7912e0bc65
Description An issue in the Research Export component allows remote attackers to perform a manipulation that results in information disclosure. This affects the '/api/research/agents.csv' endpoint.
Recommendations Apply patch 91a31aac1b0f4dbc6b8bef9f6eff0b7912e0bc65. Restrict access to the '/api/research/agents.csv' endpoint to only authenticated agents with the research exports capability.

Exploit

Fix

Information Disclosure

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-284

Related Identifiers

CVE-2026-12203

Affected Products

Ai-Trader