CVE-2026-7844 - chatchat-space Langchain-Chatchat Compatible File Service openai_routes.py delete_file missing authentication
CVE ID :CVE-2026-7844 Published : May 5, 2026, 4:16 p.m. | 38 minutes ago Description :A vulnerability was detected in chatchat-space Langchain-Chatchat up to 0.3.1.3. This vulnerability affects the function files/list_files/retrieve_file/retrieve_file_content/delete_file of the file libs/chat
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Drift outlines a recovery plan for users after $295 million DPRK-linked exploit
- [CYBER] Google Will Pay $1.5 Million For Pixel Phone Security Exploit
- [CYBER] CVE-2026-7853 - D-Link DI-8100 HTTP auto_reboot.asp sprintf buffer overflow
- [CYBER] CVE-2026-7851 - D-Link DI-8100 yyxz.asp sprintf stack-based overflow
- [CYBER] CVE-2026-7854 - D-Link DI-8100 POST Parameter url_rule.asp url_rule_asp buffer overflow
- [CYBER] Vimeo confirms breach via third-party vendor impacts 119K users