Security Advisory

CVE-2024-6090

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-27 18:40:51

Last updated 2025-10-15 12:50:32

Assigner @huntr_ai

State PUBLISHED

Description

A path traversal vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240410, allowing any user to delete other users chat histories. This vulnerability can also be exploited to delete any files ending in `.json` on the target system, leading to a denial of service as users are unable to authenticate.

← Browse all CVEs View on cve.org ↗