CVE-2026-7177 - ChatGPTNextWeb NextChat route.ts proxyHandler server-side request forgery
CVE ID :CVE-2026-7177 Published : April 27, 2026, 9:45 p.m. | 16 minutes ago Description :A security flaw has been discovered in ChatGPTNextWeb NextChat up to 2.16.1. Affected by this issue is the function proxyHandler of the file app/api/[provider]/[...path]/route.ts. The manipulation results
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 72% of enterprise users have at least one browser extension with a known CVE. Pulled the numbers on our org and it tracks.
- [CYBER] Robinhood account creation flaw abused to send phishing emails
- [CYBER] How we self-pentested ciguard — Cycle 1: four findings, four advisories, two days
- [CYBER] Laptop Security Recommendations for Keeping Sensitive Files Safe?
- [CYBER] Vulnerability Summary for the Week of April 20, 2026
- [CYBER] Who’s pledging to Aave’s $300 million DeFi recovery effort after massive Kelp DAO exploit - CoinDesk