Unrated severityNVD Advisory· Published Mar 20, 2025· Updated Oct 15, 2025

Improper Access Control in gaizhenbiao/chuanhuchatgpt

CVE-2024-8613

Description

A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240802 allows attackers to access, copy, and delete other users' chat histories. This issue arises due to improper handling of session data and lack of access control mechanisms, enabling attackers to view and manipulate chat histories of other users.

Affected products

Gaizhenbiao/Chuanhuchatgptllm-fuzzy
Range: = 20240802
gaizhenbiao/gaizhenbiao/chuanhuchatgptv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/gaizhenbiao/chuanhuchatgpt/commit/526c615c437377ee9c71f866fd0f19011910f705mitre
huntr.com/bounties/76258774-b011-4044-9c3d-c2609b1cbd29mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000