CVE-2025-0191

Name of the Vulnerable Software and Affected Versions gaizhenbiao/chuanhuchatgpt version 20240914

Description A Denial of Service (DoS) issue exists due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large filename, the server becomes overwhelmed and unresponsive, leading to unavailability for legitimate users.

Recommendations For gaizhenbiao/chuanhuchatgpt version 20240914, consider restricting the file upload feature to prevent exploitation until a patch is available. As a temporary workaround, limit the size of filenames that can be uploaded to prevent the server from becoming overwhelmed.