Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Directory Listing Vulnerability in parisneo/lollms-webui
Vulnerability Description
parisneo/lollms-webui versions v9.9 to the latest are vulnerable to a directory listing vulnerability. An attacker can list arbitrary directories on a Windows system by sending a specially crafted HTTP request to the /open_file endpoint.
CVSS Information
N/A
Vulnerability Type
绝对路径遍历
Vulnerability Title
LoLLMs Web UI 安全漏洞
Vulnerability Description
LoLLMs Web UI是Saifeddine ALOUI个人开发者的一个大型语言与多模态系统的 Web 用户界面。 LoLLMs Web UI v9.9至最新版本存在安全漏洞,该漏洞源于目录列表漏洞,攻击者可通过特制HTTP请求列出任意目录。
CVSS Information
N/A
Vulnerability Type
N/A