6 matches found
Langchain-Chatchat has a Path Traversal vulnerability
A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...
GHSA-QMGV-J263-QR33 Langchain-Chatchat has a Path Traversal vulnerability
A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function uploadtempdocs of the file /knowledgebase/uploadtempdocs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to...
LangChain-Chatchat 路径遍历漏洞
LangChain-Chatchat is a Chatchat-Space open source chatbot software developed based on the LangChain framework. A path traversal vulnerability exists in LangChain-Chatchat 0.3.1 and earlier versions, which stems from path traversal due to incorrect manipulation of the parameter flag in the file...
PT-2025-27354 · Unknown · Langchain-Chatchat
Name of the Vulnerable Software and Affected Versions: Langchain-Chatchat versions up to 0.3.1 Description: A critical vulnerability has been found in Langchain-Chatchat, affecting the upload temp docs function of the /knowledge base/upload temp docs file in the Backend component. The manipulatio...
PT-2024-18966 · Unknown · Comfyui-Impact-Pack
Name of the Vulnerable Software and Affected Versions: ComfyUI-Impact-Pack affected versions not specified Description: The issue stems from missing validation of the image.filename field in a POST request sent to the "/upload/temp" endpoint, resulting in writing arbitrary files to the file syste...
Keybase Desktop Client Security Vulnerability
Keybase is a social networking platform that supports end-to-end encryption based on PGP technology. A security vulnerability exists in the Keybase Desktop Client before 5.6.0 on Windows and macOS, and before 5.6.1 on Linux, which allows an attacker to obtain potentially sensitive media in the...