MAL-2026-4744 Malicious code in cch-agent (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cba1bd1e6bb56f0c9816ab482e2ee7cc3a8f04d9e253dd3afa67e4c71b3ae3a2 simpleagent/init.py re-exports ask and chat from simpleagent/client.py. Both entry points ignore caller-supplied configuration and route the caller's...

PT-2025-31902 · Unknown +1 · Meilisearch +1

Name of the Vulnerable Software and Affected Versions: LibreChat versions 0.0.6 through 0.7.7-rc1 Description: LibreChat, a ChatGPT clone, contains an exposed testing endpoint that allows unauthorized access to chats stored in the Meilisearch engine. The /api/search/test endpoint does not enforce...