lollms vulnerable to dot-dot-slash path traversal in XTTS server

GHSA-w9qf-83jg-2x6c · CVE-2024-6139

Published Jun 27, 2024 · Modified Jun 28, 2024

Description

A path traversal vulnerability exists in the XTTS server of the parisneo/lollms package version v9.6. This vulnerability allows an attacker to write audio files to arbitrary locations on the system and enumerate file paths. The issue arises from improper validation of user-provided file paths in the tts_to_file endpoint.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-6139
PACKAGE https://github.com/ParisNeo/lollms
WEB https://huntr.com/bounties/fd00f112-efd0-40a1-8227-d6733716e4c0

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes