CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4520

An improper access control vulnerability exists in the gaizhenbiao/chuanhuchatgpt application, specifically in version 20240410. This vulnerability allows any user on the server to access the chat history of any other user without requiring any form of interaction between the users. Exploitation of this vulnerability could lead to data breaches, including the exposure of sensitive personal details, financial data, or confidential conversations. Additionally, it could facilitate identity theft and manipulation or fraud through the unauthorized access to users' chat histories. This issue is due to insufficient access control mechanisms in the application's handling of chat history data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.8%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2024-4520

Gaizhenbiao » Chuanhuchatgpt » Version: N/A

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:-
Gaizhenbiao » Chuanhuchatgpt » Version: 20230303

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230303
Gaizhenbiao » Chuanhuchatgpt » Version: 20230305

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230305
Gaizhenbiao » Chuanhuchatgpt » Version: 20230307

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230307
Gaizhenbiao » Chuanhuchatgpt » Version: 20230310

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230310
Gaizhenbiao » Chuanhuchatgpt » Version: 20230314

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230314
Gaizhenbiao » Chuanhuchatgpt » Version: 20230317

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230317
Gaizhenbiao » Chuanhuchatgpt » Version: 20230320

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230320
Gaizhenbiao » Chuanhuchatgpt » Version: 20230323

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230323
Gaizhenbiao » Chuanhuchatgpt » Version: 20230327

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230327
Gaizhenbiao » Chuanhuchatgpt » Version: 20230330

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230330
Gaizhenbiao » Chuanhuchatgpt » Version: 20230405

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230405
Gaizhenbiao » Chuanhuchatgpt » Version: 20230409

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230409
Gaizhenbiao » Chuanhuchatgpt » Version: 20230413

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230413
Gaizhenbiao » Chuanhuchatgpt » Version: 20230417

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230417
Gaizhenbiao » Chuanhuchatgpt » Version: 20230422

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230422
Gaizhenbiao » Chuanhuchatgpt » Version: 20230427

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230427
Gaizhenbiao » Chuanhuchatgpt » Version: 20230502

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230502
Gaizhenbiao » Chuanhuchatgpt » Version: 20230507

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230507
Gaizhenbiao » Chuanhuchatgpt » Version: 20230513

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230513
Gaizhenbiao » Chuanhuchatgpt » Version: 20230520

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230520
Gaizhenbiao » Chuanhuchatgpt » Version: 20230526

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230526
Gaizhenbiao » Chuanhuchatgpt » Version: 20230601

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230601
Gaizhenbiao » Chuanhuchatgpt » Version: 20230614

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230614
Gaizhenbiao » Chuanhuchatgpt » Version: 20230619

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230619
Gaizhenbiao » Chuanhuchatgpt » Version: 20230628

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230628
Gaizhenbiao » Chuanhuchatgpt » Version: 20230709

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230709
Gaizhenbiao » Chuanhuchatgpt » Version: 20230719

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230719
Gaizhenbiao » Chuanhuchatgpt » Version: 20230728

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230728
Gaizhenbiao » Chuanhuchatgpt » Version: 20230809

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230809
Gaizhenbiao » Chuanhuchatgpt » Version: 20230820

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230820
Gaizhenbiao » Chuanhuchatgpt » Version: 20230830

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230830
Gaizhenbiao » Chuanhuchatgpt » Version: 20230911

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230911
Gaizhenbiao » Chuanhuchatgpt » Version: 20230916

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230916
Gaizhenbiao » Chuanhuchatgpt » Version: 20230926

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20230926
Gaizhenbiao » Chuanhuchatgpt » Version: 20231006

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20231006
Gaizhenbiao » Chuanhuchatgpt » Version: 20231020

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20231020
Gaizhenbiao » Chuanhuchatgpt » Version: 20231110

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20231110
Gaizhenbiao » Chuanhuchatgpt » Version: 20231215

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20231215
Gaizhenbiao » Chuanhuchatgpt » Version: 20231223

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20231223
Gaizhenbiao » Chuanhuchatgpt » Version: 20240121

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240121
Gaizhenbiao » Chuanhuchatgpt » Version: 20240305

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240305
Gaizhenbiao » Chuanhuchatgpt » Version: 20240310

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240310
Gaizhenbiao » Chuanhuchatgpt » Version: 20240410

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240410

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4520

Products

Pricing

Contact Us