PT-2026-53164 · Undefined · Undefined

Published

2026-06-28

Updated

2026-06-28

CVE-2026-13508

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

A flaw has been found in khoj-ai khoj up to 2.0.0-beta.28. This impacts an unknown function of the file src/khoj/routers/api chat.py of the component Conversation Sharing Handler. This manipulation of the argument conversation.agent causes incorrect authorization. Remote exploitation of the attack is possible. The exploit has been published and may be used. The pull request to fix this issue awaits acceptance.

Fix

Incorrect Authorization

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-285

Related Identifiers

CVE-2026-13508

Affected Products

Undefined

PT-2026-53164 · Undefined · Undefined

CVE-2026-13508

Weakness Enumeration

Related Identifiers

Affected Products

References · 8