CVE-2026-22661

Name of the Vulnerable Software and Affected Versions prompts.chat versions prior to commit 0f8d4c3

Description prompts.chat before commit 0f8d4c3 has a path traversal flaw in how it handles skill files. Attackers can create malicious ZIP archives with filenames containing path traversal sequences, like ../, to write arbitrary files to the client system. The lack of server-side filename validation allows attackers to inject these sequences. Extracting these archives with vulnerable tools can lead to files being written outside the intended directory, potentially overwriting shell initialization files and achieving code execution.

Recommendations Update prompts.chat to commit 0f8d4c3 or later.