CVE-2024-10830

High CVSS: 8.2

A Path Traversal vulnerability exists in the eosphoros-ai/db-gpt version 0.6.0 at the API endpoint `/v1/resource/file/delete`. This vulnerability allows an attacker to delete any file on the server by manipulating the `file_key` parameter. The `file_key` parameter is not properly sanitized, enabling an attacker to specify arbitrary file paths. If the specified file exists, the application will delete it.

Vendor

Dbgpt

Product

Db-gpt

CWE

CWE-22

Yayın Tarihi

2025-03-20 10:15:20

Güncelleme

2025-07-17 13:37:54

Source Identifier

security@huntr.dev

KEV Date Added

Kategoriler

CWE-22 Db-gpt HIGH Dbgpt 2025

Referanslar

https://huntr.com/bounties/26adf08a-9262-4d5a-a2ee-ce12ed919620 https://huntr.com/bounties/26adf08a-9262-4d5a-a2ee-ce12ed919620

Benzer Kayıtlar

Medium

CVE-2025-51458

SQL Injection in editor_sql_run and query_ex in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary S…

Medium

CVE-2025-51459

File Upload vulnerability in agent.hub.controller.refresh_plugins in eosphoros-ai DB-GPT 0.7.0 allows remote attackers t…

Medium

CVE-2025-6772

A vulnerability was found in eosphoros-ai db-gpt up to 0.7.2. It has been classified as critical. Affected is the functi…

High

CVE-2025-0452

eosphoros-ai/DB-GPT version latest is vulnerable to arbitrary file deletion on Windows systems via the '/v1/agent/hub/up…

Critical

CVE-2024-10902

In eosphoros-ai/db-gpt version v0.6.0, the web API `POST /v1/personal/agent/upload` is vulnerable to Arbitrary File Uplo…

High

CVE-2024-10906

In version 0.6.0 of eosphoros-ai/db-gpt, the `uvicorn` app created by `dbgpt_server` uses an overly permissive instance…