Path Traversal Vulnerability in gaizhenbiao's ChuanhuChatGPT Application
CVE-2024-6090

Currently unrated

Key Information:

Vendor: gaizhenbiao
Status: ChuanhuChatGPT
Vendor: CVE Published:; 27 June 2024

🔔 Create gaizhenbiao Vulnerability Alert

What is CVE-2024-6090?

A path traversal vulnerability in ChuanhuChatGPT allows unauthenticated users to delete chat histories of other users, as well as any files with a .json extension on the server. This issue significantly affects the application's functionality, leading to potential denial of service for legitimate users who cannot access the system for authentication.

References

https://huntr.com/bounties/bd0f8f89-5c8a-4662-89aa-a6861d...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 27, 2024