Thanhtung4102

**Name of the Vulnerable Software and Affected Versions** RAGFlow version 0.13.0 **Description** The issue is related to improper access control in the `document-hooks.ts` file, which allows unauthorized access to user documents. **Recommendations** For RAGFlow version 0.13.0, consider restricting access to the `document-hooks.ts` file until a patch is available. As a temporary workaround, review and limit user permissions to minimize the risk of unauthorized document access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.