2 matches found
Time-of-check Time-of-use (TOCTOU) Race Condition
Overview 9router is a 9Router CLI - Start and manage 9Router server Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition through the image process in open-sse/translator/concerns/image.js. An attacker can access internal-only HTTP services by...
Missing Authorization
Overview letta is a Create LLM agents with long-term memory and custom tools Affected versions of this package are vulnerable to Missing Authorization on the /users endpoint, which does not check for authorization before returning data from the getallusers function. Remediation Upgrade letta to...