CNNVD-202512-2035 Information

Dec 11, 2025 cve

CNNVD ID

CNNVD-202512-2035

CVE-2025-66451

  • CNNVD Published: 2025-12-11

Description (Chinese)

LibreChat是Danny Avila个人开发者的一个增强的 ChatGPT 克隆。 LibreChat 0.8.0及之前版本存在安全漏洞,该漏洞源于未充分验证JSON请求输入,可能导致非预期的提示修改。

Description (English)

LibreChat is an enhanced ChatGPT clone of Danny Avila’s personal developer. LibreChat 0.8.0 and previous versions had a security loophole, which stemmed from insufficient validation of JSON requests for input, which could lead to unexpected hint modifications.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-11

Last Modified

2026-02-24

References

https://github.com/danny-avila/LibreChat/commit/01413eea3d3c1454d32ca9704fa9640407839737 https://github.com/danny-avila/LibreChat/security/advisories/GHSA-vpqq-5qr4-655h

Patch

https://github.com/danny-avila/LibreChat/releases

Share on: