CVE-2024-6036

Name of the Vulnerable Software and Affected Versions: gaizhenbiao/chuanhuchatgpt version 20240410

Description: A vulnerability allows any user to restart the server at will by sending a specific request to the "/queue/join?" endpoint with fn index:66. This unrestricted server restart capability can severely disrupt service availability, cause data loss or corruption, and potentially compromise system integrity.

Recommendations: For gaizhenbiao/chuanhuchatgpt version 20240410, consider restricting access to the /queue/join? endpoint or disabling the functionality associated with fn index:66 to prevent unauthorized server restarts until a patch is available.