4072 matches found
SSRF due to insufficient patch of CVE-2024-5822
This report is not public...
(Blind) Stored XSS through the debug_log.html generated by the Latex Proof-Reading Module
This report is not public...
High-Severity Command Injection Vulnerability in run_BingBertSquad.sh
This report is not public...
Denial of service cause by unhandled exception
Description In javascript express, if async router handler throw an exception, the whole server will crash. In librechat, middleware checkBan is not surrounded by try catch block. This middleware, under some crafted payload, will throw exception and cause server crash. This poc can be exploited b...
Denial of Service(DOS) in KnowledgeBaseWebReader
Target Target Description KnowledgeBaseWebReader class recursively calls getarticleurls method. If the attacker can control a url variable to contain the root URL, it can lead to infinite recursive calls involving the same root URL repeatedly. This would cause a Denial of Service DoS scenario,...
SSRF Vulnerabilities found in Search and Github Integration AutoGPT Blocks
Hi, AutoGPT developers! Summary I have identified several Server-Side Request Forgery SSRF vulnerabilities in the default agent blocks provided by the AutoGPT platform. These vulnerabilities could lead to severe security issues, including credential leakage e.g., GitHub tokens, internal network...
Admin account takeover through weak Pseudo-Random number generator used in generating password reset codes
This report is not public...
Missing check_access in lollms_binding_infos
This report is not public...
Logs Debug Injection In File Download
Description In 2 API: /code/download/:sessionId/:fileId and /download/:userId/:fileid The parameters sessionId, fileId, userId, fileid are not validated or filtered at all but are saved directly to log.debug Proof of Concept Prepare: The logs file on the server is stored at /app/api/debug-.log I...
SSRF via Custom Tool Testing
This report is not public...
unhandled exception caused server crash
Description in javascript express framework, if async router handler throw an exception, the whole server will crash. In librechat, some API, when leading with some malformed input, will have uncaught exception. This will lead to server crash, thus a full denial of service. Mind that although thi...
Admin account takeover due to allowed excessive guessing attempts for password reset code
This report is not public...
Admin user account takeover due to password reset code not being checked on the backend
This report is not public...
XSS in the edit HTML
This report is not public...
XSS by uploading pdf file
This report is not public...
SSRF via POST /internal/models/download and GET /view REST APIs
This report is not public...
Denial of service by memory exhaustion
This report is not public...
Allowing execution user provided regexp, lead to Redos
Description librechat have a functionality of uploading chatgpt chat log. when processing the log, following code is executed: const pattern = new RegExp \u3010$citation.metadata.extra.citedmessageidx\u2020.+?\u3011, 'g', ; const replacement = $citation.metadata.title; messageText =...
Missing access control on endpoint to list all evaluations in lunary-ai/lunary
Description The /v1/evaluators/ route allows users to fetch all evaluators of a project by sending a GET request. However, the route lacks proper access control, such as middleware to ensure that only users with appropriate roles can access evaluator data. The current implementation: Does not...
Denial of service through memory exhaustion
This report is not public...
An user can view any others invite list
This report is not public...
SSRF via POST /api/proxy
This report is not public...
RCE & Full Read SSRF & Arbitrary File Read in /web_crawl endpoint
Description The webcrawl function in documentapp.py contains a RCE vulnerability. This function receives the URL parameter, accesses and obtains the HTML content of the URL through Chromium headless, and converts the HTML content into a PDF file. Users can obtain the converted PDF file through th...
SSRF via POST /v1/llm/add_llm and /v1/conversation/tts
This report is not public...
URL check not complete, lead to SSRF
This report is not public...
Denial of Service
This report is not public...
Web server DOS through run metrics
This report is not public...
Improper Role Modification by Admins for Billing Permissions
Description Admins, who do not have direct permissions to access billing resources, are able to change the permissions of existing users to have billing permissions. This can lead to a privilege escalation scenario where an administrator can: 1. Change the role of an existing user to include...
Lack of access control on /users/me/org endpoint
Description The /users/me/org route is not adequately protected by access control mechanisms such as a middleware. This lack of authorization allows unauthorized users to access information about all team members in the current organization, even if the user does not have sufficient privileges. A...
Remote Code Execution via Pickle Deserialization with Hard-Coded AuthKey in RPC Server
Description RagFlow implements an RPC server using Python's native multiprocessing package. It fully understands the use of AuthKey to access and control the group communication when applying multiprocessing for network conditions via socket, but the current implementation hard-coded the AuthKey ...
XSS through document upload
This report is not public...
Denial of service through sshfs-client in tracking server
This report is not public...
Running user provided regular expression, lead to DOS
This report is not public...
Unauthenticated Denial of Service (DoS) via Multipart Boundary in recent integration of Gradio UI
This report is not public...
Open Redirect
This report is not public...
7z slip lead to remote code execution
This report is not public...
rar slip lead to remote code execution
This report is not public...
Local File Inclusion in netease-youdao/qanything
This report is not public...
Redos (Regular Expression Denial of Service)
This report is not public...
server crash by zip bomb
This report is not public...
pickle deserialization vulnerability
Description There is a pickle deserialization vulnerability in the Latex English error correction plug-in function of gptacademic, which allows attackers to achieve remote command execution Environment setup 1. wget https://github.com/binary-husky/gptacademic/archive/refs/tags/version3.83.zip 2...
Missing check_access leads to directory deletion
This report is not public...
User can share/use/create prompts not permission
Description Users can share/use/create prompts without being granted permission by the admin. This can break application logic and permissions. Proof of Concept 1. Go to acount admin disable function share/use/create prompt. 2. share/use/create prompts with normal user. POST /api/prompts HTTP/1.1...
Patch bypass (Insufficient Patch) of CVE-2024-8736 leads to DoS
This report is not public...
heap-buffer-overflow in /radare2/shlr/java/code.c:211:21 in java_print_opcode
Description heap-buffer-overflow in /radare2/shlr/java/code.c:211:21 in javaprintopcode Version $ r2 -v radare2 5.8.9 31339 @ linux-x86-64 birth: git.5.8.8-691-gb2de2288d8 2023-10-1701:18:28 commit: b2de2288d8299f89288c503fc2ce22381b61aba0 Platform $ uname -a Linux user-GE40-2PC-Dragon-Eyes...
new 3 SEGV in MP4Box
Description new 3 SEGV in MP4Box Version $ ./MP4Box -version MP4Box - GPAC version 2.3-DEV-rev566-g50c2ab06f-master Platform $ uname -a Linux user-GE40-2PC-Dragon-Eyes 6.2.0-33-generic 3322.04.1-Ubuntu SMP PREEMPTDYNAMIC Thu Sep 7 10:33:52 UTC 2 x8664 x8664 x8664 GNU/Linux Reproduce ./MP4Box -das...
leaked all users names from a user without known permissions
Description - From any user account without authority go to /admin/users page to view employee information but can leak all employee names that exist on the platform. - The vulnerabilities occurred in the 3 features : delete, set active state, assign role in page /admin/users and...
Privilege Escalation to admin from any other users
Description By default, hestiacp creates a default fpm configuration that runs php-fpm service as the www-data user common socket. Also another php-fpm service runs from admin user and www-data group unix-socket. That allows any user upload php-file into /tmp dir, then run that script from...
Restricted vim sandbox escape
Description Restricted vim doesn't allow executing shell commands but it's possible to bypass this by setting GCONVPATH environment variable. I'm not sure if this can be consider a vulnerability but I decided to report it anyway found this while playing TeamItaly CTF . Proof of Concept Save this...
stack-buffer-overflow in gf_text_get_utf8_line
Description stack-buffer-overflow in gftextgetutf8line at filters/loadtext.c:381. Version git log commit 7edc40feef23efd8c9948292d269eae76fa475af HEAD - master, origin/master, origin/HEAD Author: jeanlf Date: Thu Oct 12 16:58:53 2023 +0200 ./bin/gcc/MP4Box -version MP4Box - GPAC version...