Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DeepChat's Incomplete XSS Fix Allows RCE through Mermaid Content
Vulnerability Description
DeepChat is an open-source AI chat platform that supports cloud models and LLMs. Versions 0.5.1 and below are vulnerable to XSS attacks through improperly sanitized Mermaid content. The recent security patch for MermaidArtifact.vue is insufficient and can be bypassed using unquoted HTML attributes combined with HTML entity encoding. Remote Code Execution is possible on the victim's machine via the electron.ipcRenderer interface, bypassing the regex filter intended to strip dangerous attributes. There is no fix at time of publication.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)
Vulnerability Title
DeepChat 安全漏洞
Vulnerability Description
DeepChat是ThinkInAIXYZ开源的一款智能助手。 DeepChat 0.5.1及之前版本存在安全漏洞,该漏洞源于Mermaid内容清理不当,可能导致跨站脚本攻击和远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A