Vulnerability	Vulnerable Version
H Server-side Request Forgery (SSRF) @lobehub/chat is a Lobe Chat - an open-source, high-performance chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Supports one-click free deployment of your private ChatGPT/LLM web application. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) through the `X-Lobe-Chat-Auth` header. An attacker can construct malicious requests to internal network services and leak sensitive information by manipulating the proxy address and OpenAI API Key within the JWT token without requiring user authentication. How to fix Server-side Request Forgery (SSRF)? Upgrade `@lobehub/chat` to version 1.19.13 or higher.	<1.19.13
M Server-side Request Forgery (SSRF) @lobehub/chat is a Lobe Chat - an open-source, high-performance chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Supports one-click free deployment of your private ChatGPT/LLM web application. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the base URL configuration, which can expose the backend API key to an attacker-controlled domain as outbound traffic is not filtered on URL. The API key can subsequently be used for unauthorized access to the vulnerable server. How to fix Server-side Request Forgery (SSRF)? Upgrade `@lobehub/chat` to version 0.162.25 or higher.	<0.162.25

Server-side Request Forgery (SSRF)

@lobehub/chat is a Lobe Chat - an open-source, high-performance chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Supports one-click free deployment of your private ChatGPT/LLM web application.

Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) through the X-Lobe-Chat-Auth header. An attacker can construct malicious requests to internal network services and leak sensitive information by manipulating the proxy address and OpenAI API Key within the JWT token without requiring user authentication.

How to fix Server-side Request Forgery (SSRF)?

Upgrade @lobehub/chat to version 1.19.13 or higher.

<1.19.13

Server-side Request Forgery (SSRF)

Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the base URL configuration, which can expose the backend API key to an attacker-controlled domain as outbound traffic is not filtered on URL. The API key can subsequently be used for unauthorized access to the vulnerable server.

How to fix Server-side Request Forgery (SSRF)?

Upgrade @lobehub/chat to version 0.162.25 or higher.

<0.162.25

Go back to all versions of this package