CVE-2024-52787

Published: Nov 25, 2024

Modified: Nov 27, 2024

PUBLISHED

Description

An issue in the upload_documents method of libre-chat v0.0.6 allows attackers to execute a path traversal via supplying a crafted filename in an uploaded file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/vemonet/libre-chat/pull/9

https://github.com/vemonet/libre-chat/issues/10

https://github.com/vemonet/libre-chat/commit/dbb8e3400e5258112179783d74c9cc54310cb72b

https://gist.github.com/jxfzzzt/276a6e8cfbc54d2c2711bb51d8d3dff3

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-52787

Description

Affected Products

References