CVE-2024-9216

Name of the Vulnerable Software and Affected Versions gaizhenbiao/ChuanhuChatGPT versions as of commit 3856d4f

Description The issue arises from an authentication bypass, allowing any user to read and delete other users' chat history. This occurs because the username is provided via an HTTP request from the client side, rather than being read from a secure source like a cookie. An attacker can pass another user's username to the get model function, gaining unauthorized access to that user's chat history.

Recommendations As a temporary workaround, consider restricting access to the get model function until a patch is available. Avoid using the username variable in the affected HTTP request until the issue is resolved. Update to a version that fixes the authentication bypass issue, ensuring that user credentials are handled securely.