CVE-2026-7178
MEDIUM
5,5
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Confidentiality: N/A
Integrity: N/A
Availability: N/A
HIGH
7,3
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: low
Integrity: low
Availability: low
HIGH
7,5
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: partial
Integrity: partial
Availability: partial
Description
AI Translation Available
A weakness has been identified in ChatGPTNextWeb NextChat up to 2.16.1. This affects the function storeUrl of the file app/api/artifacts/route.ts of the component Artifacts Endpoint. This manipulation of the argument ID causes server-side request forgery. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.
918
Server-Side Request Forgery (SSRF)
IncompleteCommon Consequences
Security Scopes Affected:
Confidentiality
Integrity
Access Control
Potential Impacts:
Read Application Data
Execute Unauthorized Code Or Commands
Bypass Protection Mechanism
Applicable Platforms
Technologies:
AI/ML, Web Based, Web Server
Application
Nextchat by Nextchat
CPE Identifier
View Detailed Analysis
cpe:2.3:a:nextchat:nextchat:2.16.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Nextchat by Nextchat
CPE Identifier
View Detailed Analysis
cpe:2.3:a:nextchat:nextchat:2.16.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://gist.github.com/YLChen-007/43252d45d75e8bdd2d45136fd6ffe8a5
https://github.com/ChatGPTNextWeb/NextChat/
https://github.com/ChatGPTNextWeb/NextChat/issues/6741
https://vuldb.com/submit/797646
https://vuldb.com/vuln/359780
https://vuldb.com/vuln/359780/cti