CNNVD-202507-2884 Information

CNNVD ID

CNNVD-202507-2884

Related CVE

CVE-2025-51858

• CNNVD Published: 2025-07-22

Description (Chinese)

ChatPlayground.ai是ChatPlayground.ai公司的一个AI大模型网站。 ChatPlayground.ai 2025-05-24及之前版本存在安全漏洞，该漏洞源于通过聊天组件发送特制SVG文件内容可能导致执行任意代码和获取敏感信息。

Description (English)

ChatPlayground.ai is an AI-based model site for ChatPlayground.ai. ChatPlayground.ai 2025-05-24 and previous versions have a security loophole, which stems from the fact that sending SVG content through chat components can lead to the execution of arbitrary codes and access to sensitive information.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

ChatPlayground.ai

Published

2025-07-22

Last Modified

2026-02-24

References

https://github.com/Secsys-FDU/CVE-2025-51858 https://access.redhat.com/security/cve/cve-2025-51858 https://nvd.nist.gov/vuln/detail/CVE-2025-51858