78 matches found
CVE-2025-6855 chatchat-space Langchain-Chatchat file path traversal
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may ...
CVE-2025-6855 chatchat-space Langchain-Chatchat file path traversal
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may ...
CVE-2025-6855 chatchat-space Langchain-Chatchat file path traversal
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may ...
CVE-2025-6855
Langchain-Chatchat (LangChain-Chatchat) up to version 0.3.1 contains a path traversal vulnerability in the /v1/file endpoint caused by manipulation of the flag argument. The issue is described as critical/high impact with potential for unauthorized file access/modification and is publicly disclos...
CVE-2025-6854 chatchat-space Langchain-Chatchat files path traversal
A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to...
CVE-2025-6854
CVE-2025-6854 affects the Langchain-Chatchat package (up to version 0.3.1). The vulnerability is a path traversal in the endpoint “/v1/files?purpose=assistants” (network attack vector, low privileges, no user interaction). The root cause is improper handling/manipulation of the file path, allowin...
CVE-2025-6854 chatchat-space Langchain-Chatchat files path traversal
A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to...
CVE-2025-6854 chatchat-space Langchain-Chatchat files path traversal
A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to...
CVE-2025-6853
A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...
CVE-2025-6853 chatchat-space Langchain-Chatchat Backend upload_temp_docs path traversal
A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...
CVE-2025-6853 chatchat-space Langchain-Chatchat Backend upload_temp_docs path traversal
A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...
CVE-2025-6853
CVE-2025-6853 affects the Langchain-Chatchat backend component in the project "chatchat-space" up to version 0.3.1. The vulnerability is in the function upload_temp_docs under /knowledge_base/upload_temp_docs, where manipulating the flag argument enables a path traversal. The issue can be exploit...
LangChain-Chatchat 路径遍历漏洞
LangChain-Chatchat is a Chatchat-Space open source chatbot software developed based on the LangChain framework. A path traversal vulnerability exists in LangChain-Chatchat 0.3.1 and earlier versions, which stems from path traversal due to incorrect manipulation of the parameter flag in the file...
PT-2025-27354
Name of the Vulnerable Software and Affected Versions: Langchain-Chatchat versions up to 0.3.1 Description: A critical vulnerability has been found in Langchain-Chatchat, affecting the upload temp docs function of the /knowledge base/upload temp docs file in the Backend component. The manipulatio...
LangChain-Chatchat 路径遍历漏洞
LangChain-Chatchat is a Chatchat-Space open source chatbot software developed based on the LangChain framework. A path traversal vulnerability exists in LangChain-Chatchat 0.3.1 and earlier versions, which stems from path traversal due to incorrect manipulation of the parameter flag in the file...
PT-2025-27356
Name of the Vulnerable Software and Affected Versions: chatchat-space Langchain-Chatchat versions up to 0.3.1 Description: A critical issue has been found in the processing of the file "/v1/file". The manipulation of the flag argument leads to path traversal. The exploit has been disclosed to the...
LangChain-Chatchat 路径遍历漏洞
LangChain-Chatchat is a Chatchat-Space open source chatbot software developed based on the LangChain framework. A path traversal vulnerability exists in Langchain-Chatchat 0.3.1 and earlier versions, which stems from a path traversal due to incorrect manipulation of the file...
PT-2025-27355
Name of the Vulnerable Software and Affected Versions: Langchain-Chatchat versions up to 0.3.1 Description: A problematic vulnerability was found in Langchain-Chatchat, affecting unknown code of the file "/v1/files?purpose=assistants". This issue leads to path traversal and can be initiated...