librechat
Communicationsoss-project
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting librechat.
- CVE-2026-54024LibreChat: Incomplete Fix for CVE-2024-11171 — Conversation Import Multer Instance Missing File Size Limits6.5
- CVE-2026-54025LibreChat: Stored XSS via unescaped image alt text in markdown artifact preview5.4
- CVE-2026-54027LibreChat: Image Upload Route Bypasses Agent Permission Check — Incomplete Fix for File Upload Authorization6.5
- CVE-2026-54029LibreChat: IDOR in Message Deletion — Incomplete Fix for CVE-2024-41703 Leaves deleteMessages() Without User Filter5.3
- CVE-2026-54033LibreChat: SSRF via User-Provided Custom Endpoint baseURL — no private IP validation on user-configured API base URLs7.7
- CVE-2026-54037LibreChat: Incomplete Fix for CVE-2025-7105 — /api/convos/duplicate Lacks Rate Limiting Applied to /api/convos/fork6.5
- CVE-2026-54030LibreChat: Missing Resource Parameter Validation in MCP OAuth Flow8.0
- CVE-2026-54036LibreChat: 2FA Re-enrollment Allows Full Account 2FA Takeover Without OTP Verification5.3
- CVE-2026-44654LibreChat: Shared-agent editor can globally delete owner's file records — breaks owner's other private agents8.1
- CVE-2026-44653LibreChat Shared MCP Server View Leaks Decrypted Admin Secrets6.5
- CVE-2026-32625LibreChat Exfiltrates Server Secrets via MCP Server URL Injection9.6
- CVE-2026-31942LibreChat has IDOR in API Keys Management that allows any authenticated user to overwrite other users' API keys7.1
- CVE-2026-34371LibreChat Affected by Arbitrary File Write via `execute_code` Artifact Filename Traversal6.3
- CVE-2026-31951LibreChat's MCP Server Header Injection Enables OAuth Token Theft6.8
- CVE-2026-31950LibreChat's IDOR in SSE Stream Subscription Allows Reading Other Users' Chats5.3