VYPR

Lobehub

by Lobehub

Source repositories

CVEs (6)

  • CVE-2026-54157criJun 16, 2026
    risk 0.52cvss epss 0.02

    ## Unauthenticated SSRF in /webapi/proxy allows anyone to proxy requests and inject cookies on lobehub.com ## Summary The `/webapi/proxy` endpoint on app.lobehub.com accepts a URL in the POST body and fetches it server-side without any authentication. This is the same proxy…

  • CVE-2026-42045MedMay 12, 2026
    risk 0.33cvss 6.2epss 0.00

    LobeHub is a work-and-lifestyle space to find, build, and collaborate with agent teammates that grow with you. Prior to 2.1.48, when LobeChat processes custom tags in the Render process of src/features/Portal/Artifacts/Body/Renderer/index.tsx, if no type match is found, it will…

  • CVE-2026-23835MedJan 30, 2026
    risk 0.30cvss epss 0.00

    LobeHub is an open source human-and-AI-agent network. Prior to version 1.143.3, the file upload feature in `Knowledge Base > File Upload` does not validate the integrity of the upload request, allowing users to intercept and modify the request parameters. As a result, it is…

  • CVE-2026-39411MedApr 8, 2026
    risk 0.26cvss 5.0epss 0.00

    LobeHub is a work-and-lifestyle space to find, build, and collaborate with agent teammates that grow with you. Prior to 2.1.48, the webapi authentication layer trusts a client-controlled X-lobe-chat-auth header that is only XOR-obfuscated, not signed or otherwise authenticated.…

  • CVE-2026-23522LowJan 19, 2026
    risk 0.17cvss 3.7epss 0.00

    LobeChat is an open source chat application platform. Prior to version 2.0.0-next.193, `knowledgeBase.removeFilesFromKnowledgeBase` tRPC ep allows authenticated users to delete files from any knowledge base without verifying ownership. `userId` filter in the database query is…

  • CVE-2025-62505LowOct 17, 2025
    risk 0.13cvss 3.0epss 0.00

    LobeChat is an open source chat application platform. The web-crawler package in LobeChat version 1.136.1 allows server-side request forgery (SSRF) in the tools.search.crawlPages tRPC endpoint. A client can supply an arbitrary urls array together with impls containing the value…