Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/lobehub/lobe-chat

🤯 Lobe Chat - an open-source, modern-design AI chat framework. Supports Multi AI Providers( OpenAI / Claude 3 / Gemini / Ollama / Qwen / DeepSeek), Knowledge Base (file upload / knowledge management / RAG ), Multi-Modals (Vision/TTS/Plugins/Artifacts). One-click FREE deployment of your private ChatGPT/ Claude application.
https://github.com/lobehub/lobe-chat

High

GSA_kwCzR0hTQS0yeGNjLXZtM2YtbThyd84ABByj

@lobehub/chat Server Side Request Forgery vulnerability
Ecosystems: npm
Packages: @lobehub/chat
Source: github
Published: about 2 months ago

Moderate

GSA_kwCzR0hTQS0zZmM4LTJyM2YtOHdyZ84AA_um

lobe-chat implemented an insufficient fix for GHSA-mxhq-xw3g-rphc (CVE-2024-32964)
Ecosystems: npm
Packages: @lobehub/chat
Source: github
Published: 4 months ago

Moderate

GSA_kwCzR0hTQS1wMzZyLXF4Z3gtanEyds4AA9I3

Lobe Chat API Key Leak
Ecosystems: npm
Packages: @lobehub/chat
Source: github
Published: 7 months ago

Critical

GSA_kwCzR0hTQS1teGhxLXh3M2ctcnBoY84AA74V

lobe-chat `/api/proxy` endpoint Server-Side Request Forgery vulnerability
Ecosystems: npm
Packages: @lobehub/chat
Source: github
Published: 9 months ago

Moderate

GSA_kwCzR0hTQS1wZjU1LWZqOTYteGYzN84AA499

@lobehub/chat vulnerable to unauthorized access to plugins
Ecosystems: npm
Packages: @lobehub/chat
Source: github
Published: 12 months ago