A Cross-Site Request Forgery (CSRF) vulnerability in version 0.5.0 of imartinez/privategpt allows an attacker to delete all uploaded files on the server. This can lead to data loss and service disruption for the application's users.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntr_ai
Published: 2024-06-27T18:45:51.085Z
Updated: 2024-06-27T19:44:42.414Z
Reserved: 2024-06-12T20:12:37.534Z
Link: CVE-2024-5935
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-06-27T19:15:18.073
Modified: 2024-06-27T19:25:12.067
Link: CVE-2024-5935
JSON object: View
Redhat Information
No data.
CWE