Security Advisory - Published 2026-06-25 - Self-hosted apps

Appsmith, AutoGPT, and Sentry: check self-hosted control planes and queues

This batch covers Appsmith container control surfaces, AutoGPT template workers, and Sentry event ingestion. Patch versions first, then review container routes, reverse proxy changes, worker CPU spikes, ingestion queues, and administrator activity.

Defensive scope: check owned self-hosted deployments only. The page avoids internal API calls, request examples, and actions against third-party systems.

Affected systems

CVEProductReviewCVSS
CVE-2026-55454AppsmithCaddy9.9
CVE-2026-50189Appsmithsupervisord8.9
CVE-2026-33235AutoGPTtemplates7.7
CVE-2026-52794Sentryingestion7.5

Owner self-check

grep -Rni 'appsmith\\|autogpt\\|sentry' docker-compose.yml .env package.json requirements.txt 2>/dev/null
docker ps | egrep -i 'appsmith|autogpt|sentry|worker|redis|postgres'
docker logs --since 7d $(docker ps -q --filter name=appsmith) 2>/dev/null | egrep -i 'caddy|supervisor|admin|env|error|warning'
docker logs --since 7d $(docker ps -q --filter name=autogpt) 2>/dev/null | egrep -i 'template|worker|timeout|memory|cpu|error'
docker logs --since 7d $(docker ps -q --filter name=sentry) 2>/dev/null | egrep -i 'ingest|event|queue|cpu|regex|error'

What to review

  • Appsmith before 2.1: reverse proxy config, admin actions, container process changes, and exposed internal control surfaces.
  • AutoGPT before 0.6.52: Fill Text Template blocks, tenant activity, worker crashes, and CPU or memory saturation.
  • Sentry 24.4.0 through 26.5.2: event ingestion spikes, queue backlogs, project sources, and repeated malformed events.

Safe fix path

  1. Upgrade Appsmith to 2.1 or newer, AutoGPT to 0.6.52 or newer, and Sentry to 26.5.2 or newer.
  2. Restrict admin panels, internal container ports, and worker dashboards to trusted networks.
  3. Preserve container logs and queue metrics before pruning failed jobs or events.
  4. Rotate application secrets if Appsmith admin or container control state looks changed.

Repair help

Use Ping7 CVE Repair when an Appsmith instance had unexpected config changes, AutoGPT workers stalled, or Sentry ingestion needs a production-safe review.

References

Author: Ping7 security team - Published: 2026-06-25 - Self-hosted DevOps and AI CVE batch - Defensive self-check only.