A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions <= 20240410. This vulnerability allows an attacker to gain unauthorized access to overwrite critical configuration files within the system. Exploiting this vulnerability can lead to unauthorized changes in system behavior or security settings. Additionally, tampering with these configuration files can result in a denial of service (DoS) condition, disrupting normal system operation.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HGaizhenbiao Chuanhuchatgpt
APPGaizhenbiao≤ 2024-04-10
Related vulnerabilities
Path Traversal i RCE w ChuanhuChatGPT — niezabezpieczone dane wejściowe
Nieautoryzowany restart serwera w ChuanhuChatGPT poprzez endpoint /queue/join
Tworzenie arbitralnych folderów na serwerze w ChuanhuChatGPT
SSRF w interfejsie upload ChuanhuChatGPT — dostęp do zasobów wewnętrznych
Path traversal w ChuanhuChatGPT — dostęp do poufnych plików