Vulnerabilities > Gaizhenbiao > Chuanhuchatgpt > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-29 | CVE-2024-8143 | Unspecified vulnerability in Gaizhenbiao Chuanhuchatgpt 20240628 In the latest version (20240628) of gaizhenbiao/chuanhuchatgpt, an issue exists in the /file endpoint that allows authenticated users to access the chat history of other users. | 4.3 |
| 2024-07-11 | CVE-2024-6035 | Unspecified vulnerability in Gaizhenbiao Chuanhuchatgpt 20240410 A Stored Cross-Site Scripting (XSS) vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240410. | 6.1 |
| 2024-06-06 | CVE-2024-3402 | Cross-site Scripting vulnerability in Gaizhenbiao Chuanhuchatgpt A stored Cross-Site Scripting (XSS) vulnerability existed in version (20240121) of gaizhenbiao/chuanhuchatgpt due to inadequate sanitization and validation of model output data. | 5.4 |
| 2024-06-06 | CVE-2024-3404 | Unspecified vulnerability in Gaizhenbiao Chuanhuchatgpt In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a vulnerability due to improper access control mechanisms. | 6.5 |
| 2024-06-06 | CVE-2024-5278 | Unspecified vulnerability in Gaizhenbiao Chuanhuchatgpt gaizhenbiao/chuanhuchatgpt is vulnerable to an unrestricted file upload vulnerability due to insufficient validation of uploaded file types in its `/upload` endpoint. | 6.1 |