Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AstrBotDevs — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting AstrBotDevs. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by AstrBotDevs:AstrBot
CVE IDTitleCVSSSeverityPublished
CVE-2026-6984 AstrBotDevs AstrBot Dashboard API t2i.py create_template special elements used in a template engine — AstrBotCWE-1336 4.7 Medium2026-04-25
CVE-2026-6119 AstrBotDevs AstrBot API Endpoint post_data.get server-side request forgery — AstrBotCWE-918 6.3 Medium2026-04-12
CVE-2026-6118 AstrBotDevs AstrBot MCP Endpoint tools.py add_mcp_server command injection — AstrBotCWE-77 6.3 Medium2026-04-12
CVE-2026-6117 AstrBotDevs AstrBot install-upload Endpoint plugin.py install_plugin_upload sandbox — AstrBotCWE-265 6.3 Medium2026-04-12
CVE-2025-48957 AstrBot Has Path Traversal Vulnerability in /api/chat/get_file — AstrBotCWE-23 7.5 High2025-06-02

This page lists every published CVE security advisory associated with AstrBotDevs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.