Vulnerabilities > Gaizhenbiao > Chuanhuchatgpt > 20240628

DATE CVE VULNERABILITY TITLE RISK
2024-10-29 CVE-2024-5982 Path Traversal vulnerability in Gaizhenbiao Chuanhuchatgpt
A path traversal vulnerability exists in the latest version of gaizhenbiao/chuanhuchatgpt.
network
low complexity
gaizhenbiao CWE-22
critical
 9.8
9.8
2024-10-29 CVE-2024-7807 Allocation of Resources Without Limits or Throttling vulnerability in Gaizhenbiao Chuanhuchatgpt 20240628
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service (DOS) attack.
network
low complexity
gaizhenbiao CWE-770
7.5
7.5
2024-10-29 CVE-2024-7962 Path Traversal vulnerability in Gaizhenbiao Chuanhuchatgpt 20240628
An arbitrary file read vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240628 due to insufficient validation when loading prompt template files.
network
low complexity
gaizhenbiao CWE-22
7.5
7.5
2024-06-06 CVE-2024-3402 Cross-site Scripting vulnerability in Gaizhenbiao Chuanhuchatgpt
A stored Cross-Site Scripting (XSS) vulnerability existed in version (20240121) of gaizhenbiao/chuanhuchatgpt due to inadequate sanitization and validation of model output data.
network
low complexity
gaizhenbiao CWE-79
5.4
5.4
2024-06-06 CVE-2024-3404 Unspecified vulnerability in Gaizhenbiao Chuanhuchatgpt
In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a vulnerability due to improper access control mechanisms.
network
low complexity
gaizhenbiao
6.5
6.5
2024-06-06 CVE-2024-5278 Unspecified vulnerability in Gaizhenbiao Chuanhuchatgpt
gaizhenbiao/chuanhuchatgpt is vulnerable to an unrestricted file upload vulnerability due to insufficient validation of uploaded file types in its `/upload` endpoint.
network
low complexity
gaizhenbiao
6.1
6.1