Lucene search
K

78 matches found

OSV
OSV
added 2025/06/29 9:0 a.m.7 views

CVE-2025-6855 chatchat-space Langchain-Chatchat file path traversal

A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may ...

5.1CVSS5.5AI score0.00552EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/06/29 9:0 a.m.19 views

CVE-2025-6855 chatchat-space Langchain-Chatchat file path traversal

A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may ...

5.5CVSS0.00552EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/29 9:0 a.m.5 views

CVE-2025-6855 chatchat-space Langchain-Chatchat file path traversal

A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may ...

5.5CVSS7.1AI score0.00552EPSS
Exploits1References4
CVE
CVE
added 2025/06/29 9:0 a.m.20 views

CVE-2025-6855

Langchain-Chatchat (LangChain-Chatchat) up to version 0.3.1 contains a path traversal vulnerability in the /v1/file endpoint caused by manipulation of the flag argument. The issue is described as critical/high impact with potential for unauthorized file access/modification and is publicly disclos...

8.8CVSS7.1AI score0.00552EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/29 8:31 a.m.4 views

CVE-2025-6854 chatchat-space Langchain-Chatchat files path traversal

A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to...

5.3CVSS7.3AI score0.00472EPSS
Exploits1References4
CVE
CVE
added 2025/06/29 8:31 a.m.25 views

CVE-2025-6854

CVE-2025-6854 affects the Langchain-Chatchat package (up to version 0.3.1). The vulnerability is a path traversal in the endpoint “/v1/files?purpose=assistants” (network attack vector, low privileges, no user interaction). The root cause is improper handling/manipulation of the file path, allowin...

5.3CVSS7.3AI score0.00472EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/06/29 8:31 a.m.6 views

CVE-2025-6854 chatchat-space Langchain-Chatchat files path traversal

A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to...

5.3CVSS4.8AI score0.00472EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/06/29 8:31 a.m.18 views

CVE-2025-6854 chatchat-space Langchain-Chatchat files path traversal

A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to...

5.3CVSS0.00472EPSS
Exploits1References4
NVD
NVD
added 2025/06/29 8:15 a.m.8 views

CVE-2025-6853

A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...

9.8CVSS0.00482EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/29 7:31 a.m.5 views

CVE-2025-6853 chatchat-space Langchain-Chatchat Backend upload_temp_docs path traversal

A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...

6.5CVSS7.2AI score0.00482EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/29 7:31 a.m.15 views

CVE-2025-6853 chatchat-space Langchain-Chatchat Backend upload_temp_docs path traversal

A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...

6.5CVSS0.00482EPSS
Exploits1References4
CVE
CVE
added 2025/06/29 7:31 a.m.33 views

CVE-2025-6853

CVE-2025-6853 affects the Langchain-Chatchat backend component in the project "chatchat-space" up to version 0.3.1. The vulnerability is in the function upload_temp_docs under /knowledge_base/upload_temp_docs, where manipulating the flag argument enables a path traversal. The issue can be exploit...

9.8CVSS6.5AI score0.00482EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/06/29 12:0 a.m.5 views

LangChain-Chatchat 路径遍历漏洞

LangChain-Chatchat is a Chatchat-Space open source chatbot software developed based on the LangChain framework. A path traversal vulnerability exists in LangChain-Chatchat 0.3.1 and earlier versions, which stems from path traversal due to incorrect manipulation of the parameter flag in the file...

9.8CVSS6.2AI score0.00482EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.12 views

PT-2025-27354

Name of the Vulnerable Software and Affected Versions: Langchain-Chatchat versions up to 0.3.1 Description: A critical vulnerability has been found in Langchain-Chatchat, affecting the upload temp docs function of the /knowledge base/upload temp docs file in the Backend component. The manipulatio...

9.8CVSS6.2AI score0.00482EPSS
Exploits1References15
CNNVD
CNNVD
added 2025/06/29 12:0 a.m.8 views

LangChain-Chatchat 路径遍历漏洞

LangChain-Chatchat is a Chatchat-Space open source chatbot software developed based on the LangChain framework. A path traversal vulnerability exists in LangChain-Chatchat 0.3.1 and earlier versions, which stems from path traversal due to incorrect manipulation of the parameter flag in the file...

8.8CVSS5.3AI score0.00552EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.12 views

PT-2025-27356

Name of the Vulnerable Software and Affected Versions: chatchat-space Langchain-Chatchat versions up to 0.3.1 Description: A critical issue has been found in the processing of the file "/v1/file". The manipulation of the flag argument leads to path traversal. The exploit has been disclosed to the...

8.8CVSS5.5AI score0.00552EPSS
Exploits1References14
CNNVD
CNNVD
added 2025/06/29 12:0 a.m.5 views

LangChain-Chatchat 路径遍历漏洞

LangChain-Chatchat is a Chatchat-Space open source chatbot software developed based on the LangChain framework. A path traversal vulnerability exists in Langchain-Chatchat 0.3.1 and earlier versions, which stems from a path traversal due to incorrect manipulation of the file...

5.3CVSS4.5AI score0.00472EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.15 views

PT-2025-27355

Name of the Vulnerable Software and Affected Versions: Langchain-Chatchat versions up to 0.3.1 Description: A problematic vulnerability was found in Langchain-Chatchat, affecting unknown code of the file "/v1/files?purpose=assistants". This issue leads to path traversal and can be initiated...

5.3CVSS5.2AI score0.00472EPSS
Exploits1References15
Rows per page
Query Builder