Deenob

**Name of the Vulnerable Software and Affected Versions** LibreChat versions prior to 0.7.4-rc1 **Description** The issue is related to incorrect access control for message updates. **Recommendations** For versions prior to 0.7.4-rc1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** LibreChat versions through 0.7.4-rc1 **Description** The issue is related to the lack of validation of normalized pathnames of images. This could potentially lead to unspecified consequences. **Recommendations** For versions through 0.7.4-rc1, consider validating image pathnames to prevent potential issues. At the moment, there is no information about a newer version that contains a fix for this issue.