Last active
July 26, 2025 03:25
-
-
Save ycshao12/69a48551cc6c9cc69153d137afe9ecef to your computer and use it in GitHub Desktop.
CVE-2025-45150
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Suggested description] | |
| Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive files via supplying a crafted request. | |
| [Vulnerability Type] | |
| Insecure Permissions | |
| [Vendor of Product] | |
| https://github.com/X-D-Lab/LangChain-ChatGLM-Webui | |
| [Affected Product Code Base] | |
| LangChain-ChatGLM-Webui - commit id:ef829a28234228761a97541e4ebae9da4f4e6800 | |
| [Affected Component] | |
| Knowledge Base Download Functionality, URL Path Handling, File Access Control | |
| [Attack Type] | |
| Remote | |
| [Impact Information Disclosure] | |
| true | |
| [Attack Vectors] | |
| To exploit this vulnerability, an attacker can manipulate the URL path in the download request to access and download any file within the agent directory (e.g., config.py). When a user uploads a knowledge base, other users can download files from the knowledge base by modifying the URL to include relative paths to files in the agent directory. This allows unauthorized access to sensitive files stored in the agent directory. | |
| [Reference] | |
| http://langchain-chatglm-webui.com | |
| https://github.com/X-D-Lab/LangChain-ChatGLM-Webui |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment