Lucene search
K

8 matches found

NVD
NVD
added 2026/02/02 11:16 a.m.4 views

CVE-2025-7105

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...

5.7CVSS0.00279EPSS
Exploits0References2
OSV
OSV
added 2026/02/02 11:16 a.m.6 views

CVE-2025-7105

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...

5.7CVSS5.9AI score
Exploits0References2
EUVD
EUVD
added 2026/02/02 10:36 a.m.4 views

EUVD-2025-206617

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...

5.7CVSS5.4AI score0.00279EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/02 10:36 a.m.4 views

CVE-2025-7105 Denial of Service via JavaScript Memory Overflow in danny-avila/librechat

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...

5.7CVSS5.4AI score0.00279EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/02 10:36 a.m.25 views

CVE-2025-7105 Denial of Service via JavaScript Memory Overflow in danny-avila/librechat

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...

5.7CVSS0.00279EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/02 10:36 a.m.3 views

CVE-2025-7105

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...

5.7CVSS5.4AI score0.00279EPSS
Exploits0References3
CVE
CVE
added 2026/02/02 10:36 a.m.18 views

CVE-2025-7105

The CVE-2025-7105 entry concerns danny-avila/librechat where an unrestricted Fork Function at /api/convos/fork allows rapid forking of content. If a forked item contains a Mermaid graph with many nodes, a JavaScript heap out of memory error can occur on service restart, causing a Denial of Servic...

5.7CVSS5.4AI score0.00279EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.9 views

PT-2026-5653

Name of the Vulnerable Software and Affected Versions librechat affected versions not specified Description A flaw exists in danny-avila/librechat that allows attackers to exploit the unrestricted Fork Function. The vulnerable function is located at the /api/convos/fork endpoint. By rapidly forki...

5.7CVSS6.2AI score0.00279EPSS
Exploits0References8
Rows per page
Query Builder