Описание
Langchain-Chatchat vulnerable to path traversal
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may be used.
Пакеты
Наименование
langchain-chatchat
pip
Затронутые версииВерсия исправления
<= 0.3.1
Отсутствует
Связанные уязвимости
CVSS3: 5.5
nvd
7 месяцев назад
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may be used.