Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial of Service in gaizhenbiao/chuanhuchatgpt
Vulnerability Description
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to restart the server at will by sending a specific request to the `/queue/join?` endpoint with `"fn_index":66`. This unrestricted server restart capability can severely disrupt service availability, cause data loss or corruption, and potentially compromise system integrity.
CVSS Information
N/A
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
ChuanhuChatGPT 资源管理错误漏洞
Vulnerability Description
ChuanhuChatGPT是为ChatGPT/ChatGLM/LLaMA/StableLM/MOSS等多种LLM提供了一个轻快好用的Web图形界面。 ChuanhuChatGPT 20240410版本存在资源管理错误漏洞,该漏洞源于允许任何用户通过向端点发送特定请求来随意重启服务器,可能会严重破坏服务可用性,导致数据丢失或损坏,损害系统完整性。
CVSS Information
N/A
Vulnerability Type
N/A