QwikSec

Security Database

CVE

CWE

Training

CVE-2026-22218

Published: Jan 19, 2026

Modified: Mar 5, 2026

PUBLISHED

Description

Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in the /project/element update flow. An authenticated client can send a custom Element with a user-controlled path value, causing the server to copy the referenced file into the attacker’s session. The resulting element identifier (chainlitKey) can then be used to retrieve the file contents via /project/file/<chainlitKey>, allowing disclosure of any file readable by the Chainlit service.

Vendor	Product	Versions
Chainlit	Chainlit	affected `0 - < 2.9.4`

Weaknesses (CWE)

References

https://github.com/Chainlit/chainlit/releases/tag/2.9.4

release-notes

patch

https://www.zafran.io/resources/chainleak-critical-ai-framework-vulnerabilities-expose-data-enable-cloud-takeover

technical-description

exploit

https://www.vulncheck.com/advisories/chainlit-arbitrary-file-read-via-project-element

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.