3 matches found
EUVD-2025-206617
A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...
CVE-2025-7105
A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...
PT-2026-5653
Name of the Vulnerable Software and Affected Versions librechat affected versions not specified Description A flaw exists in danny-avila/librechat that allows attackers to exploit the unrestricted Fork Function. The vulnerable function is located at the /api/convos/fork endpoint. By rapidly forki...