4 matches found
CVE-2026-29871
A path traversal vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 2026-01-19 in the Beifong AI News and Podcast Agent backend in FastAPI backend, stream-audio endpoint, in file routers/podcastrouter.py, in function streamaudio. The stream-aud...
Awesome LLM Apps 安全漏洞
Awesome LLM Apps is a collection of large language model applications personally developed by Shubham Saboo. Awesome LLM Apps contains a security vulnerability, which stems from the stream-audio endpoint not properly verifying user-controlled path parameters. This could allow unverified remote...
CVE-2026-29871
A path traversal vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 2026-01-19 in the Beifong AI News and Podcast Agent backend in FastAPI backend, stream-audio endpoint, in file routers/podcastrouter.py, in function streamaudio. The stream-aud...
CVE-2026-29871
The CVE-2026-29871 affects the Beifong AI News and Podcast Agent backend (FastAPI) in the stream_audio endpoint (routers/podcast_router.py) of the awesome-llm-apps project. The vulnerability arises from a user-controlled path parameter that is concatenated into a filesystem path without proper va...