Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

@lobehub/chat

npm

Lobe Chat - an open-source, high-performance chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Supports one-click free deployment of your private ChatGPT/LLM web application.

View on github.com · View on npmjs.org

Security Advisories for @lobehub/chat in npm

Moderate
4 months ago

LobeHub Vulnerable to Improper Authorization in Presigned Upload GSA_kwCzR0hTQS13cnJyLThqY3Ytd2pmNc4ABRxv

npm @lobehub/chat
Critical
4 months ago

Lobe Chat affected by Cross-Site Scripting(XSS) that can escalate to Remote Code Execution(RCE) GSA_kwCzR0hTQS00Z3BjLXJocGotOTQ0M84ABRSH

npm @lobehub/chat
Low
4 months ago

Lobe Chat has IDOR in Knowledge Base File Removal that Allows Cross User File Deletion GSA_kwCzR0hTQS1qN3hwLTRtZzkteDI4cs4ABRSE

npm @lobehub/chat
Low
8 months ago

Lobe Chat vulnerable to Server-Side Request Forgery with native web fetch module GSA_kwCzR0hTQS1mZ3g0LXA4eGYtcWhwOc4ABNg4

npm @lobehub/chat
Moderate
8 months ago

lobe-chat has an Open Redirect GSA_kwCzR0hTQS14cGg1LTI3OHAtMjZxeM4ABMn0

npm @lobehub/chat
Moderate
9 months ago

Lobe Chat Desktop vulnerable to Remote Code Execution via XSS in Chat Messages GSA_kwCzR0hTQS1tNzlyLXI3NjUtNWY5as4ABMXt

npm @lobehub/chat
High
over 1 year ago

@lobehub/chat Server Side Request Forgery vulnerability GSA_kwCzR0hTQS0yeGNjLXZtM2YtbThyd84ABByj

npm @lobehub/chat
Moderate
over 1 year ago

lobe-chat implemented an insufficient fix for GHSA-mxhq-xw3g-rphc (CVE-2024-32964) GSA_kwCzR0hTQS0zZmM4LTJyM2YtOHdyZ84AA_um

npm @lobehub/chat
Moderate
almost 2 years ago

Lobe Chat API Key Leak GSA_kwCzR0hTQS1wMzZyLXF4Z3gtanEyds4AA9I3

npm @lobehub/chat
Critical
about 2 years ago

lobe-chat `/api/proxy` endpoint Server-Side Request Forgery vulnerability GSA_kwCzR0hTQS1teGhxLXh3M2ctcnBoY84AA74V

npm @lobehub/chat
Moderate
over 2 years ago

@lobehub/chat vulnerable to unauthorized access to plugins GSA_kwCzR0hTQS1wZjU1LWZqOTYteGYzN84AA499

npm @lobehub/chat

Filter by Severity

Moderate 6 Low 2 Critical 2 High 1