Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Server-Side Request Forgery (SSRF) in weixin.php of ChatGPT-wechat-personal commit a0857f6 allows attackers to force the application to make arbitrary requests.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ChatGPT-wechat-personal 安全漏洞
Vulnerability Description
ChatGPT-wechat-personal是在微信个人订阅号中通过调用OpenAI最新接口和gpt-3.5-turbo模型实现ChatGPT聊天机器人的功能。 ChatGPT-wechat-personal commit a0857f6版本存在安全漏洞,该漏洞源于文件weixin.php存在服务器请求伪造(SSRF)漏洞。攻击者可利用该漏洞迫使应用程序执行任意请求。
CVSS Information
N/A
Vulnerability Type
N/A