C121914Yu

**Name of the Vulnerable Software and Affected Versions** FastGPT versions prior to 4.15.0-beta1 **Description** An authenticated attacker can bypass the global `isInternalAddress` network protection to make arbitrary HTTP GET requests to internal network services. This occurs due to an incomplete fix in the dataset preview endpoint "/api/core/dataset/file/getPreviewChunks" when the `externalFile` data import type is used. This is a Server-Side Request Forgery (SSRF), which is a flaw that allows an attacker to induce the server-side application to make requests to an unintended location. **Recommendations** Update to version 4.15.0-beta1.

Name of the Vulnerable Software and Affected Versions: FastGPT versions prior to 4.9.12 Description: The issue concerns the LastRoute Parameter on the login page, which is vulnerable to open redirect and DOM-based XSS due to improper validation and lack of sanitization. This allows attackers to execute malicious JavaScript or redirect users to attacker-controlled sites. Recommendations: For versions prior to 4.9.12, update to version 4.9.12 to resolve the issue. As a temporary workaround, consider restricting access to the LastRoute Parameter on the login page to minimize the risk of exploitation. Avoid using the `LastRoute` parameter in the affected login page until the issue is resolved.