CVE-2023-49785

high-risk
Published 2024-03-12

NextChat, also known as ChatGPT-Next-Web, is a cross-platform chat user interface for use with ChatGPT. Versions 2.11.2 and prior are vulnerable to server-side request forgery and cross-site scripting. This vulnerability enables read access to internal HTTP endpoints but also write access using HTTP POST, PUT, and other methods. Attackers can also use this vulnerability to mask their source IP by forwarding malicious traffic intended for other Internet targets through these open proxies. As of time of publication, no patch is available, but other mitigation strategies are available. Users may avoid exposing the application to the public internet or, if exposing the application to the internet, ensure it is an isolated network with no access to any other internal resources.

Do I need to act?

!
91.7% chance of exploitation in next 30 days
EPSS score — higher than 8% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.1/10 Critical
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Nextchat

References (8)

Product https://github.com/ChatGPTNextWeb/ChatGPT-Next-Web
Exploit https://www.horizon3.ai/attack-research/attack-blogs/nextchat-an-ai-chatbot-that...
Product https://github.com/ChatGPTNextWeb/ChatGPT-Next-Web
Exploit https://github.com/ChatGPTNextWeb/ChatGPT-Next-Web/issues/4283
Exploit https://github.com/ChatGPTNextWeb/ChatGPT-Next-Web/pull/4285
Exploit https://www.horizon3.ai/attack-research/attack-blogs/nextchat-an-ai-chatbot-that...
Exploit https://www.vicarius.io/vsociety/posts/hacking-ai-chatbots-for-fun-and-learning-...
Exploit https://www.vicarius.io/vsociety/posts/hacking-ai-chatbots-for-fun-and-learning-...
56
/ 100
high-risk
Severity 31/34 · Critical
Exploitability 20/34 · Moderate
Exposure 5/34 · Minimal