3 matches found
GHSA-M76R-XQQJ-MQMV Quivr unauthenticated Denial of Service (DoS) via Multipart Boundary
A Denial of Service DoS vulnerability in the file upload feature of stangirard/quivr v0.0.298 allows unauthenticated attackers to cause excessive resource consumption by appending characters to the end of a multipart boundary in an HTTP request. This leads to the server continuously processing ea...
CVE-2024-5885 Server-Side Request Forgery (SSRF) in stangirard/quivr
stangirard/quivr version 0.0.236 contains a Server-Side Request Forgery SSRF vulnerability. The application does not provide sufficient controls when crawling a website, allowing an attacker to access applications on the local network. This vulnerability could allow a malicious user to gain acces...
Quivr Code Issue Vulnerability
Quivr is an artificial intelligence application open-sourced by Quivr. A code issue vulnerability exists in Quivr version 0.0.236 that stems from the application not providing sufficient controls when crawling websites, allowing an attacker to access the application on the local network...