CVE-2024-4841

A Path Traversal vulnerability exists in the parisneo/lollms-webui, specifically within the 'add_reference_to_local_mode' function due to the lack of input sanitization. This vulnerability affects versions v9.6 to the latest. By exploiting this vulnerability, an attacker can predict the folders, subfolders, and files present on the victim's computer. The vulnerability is present in the way the application handles the 'path' parameter in HTTP requests to the '/add_reference_to_local_model' endpoint.

CVSS v3 3.3 LOW

3.3^/10

CVSS v3 : LOW

Vector :

Exploitability : 1.8 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://huntr.com/bounties/740dda3e-7104-4ccf-9ac4-8870e4d6d602	Exploit Third Party Advisory
https://huntr.com/bounties/740dda3e-7104-4ccf-9ac4-8870e4d6d602	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:lollms:lollms-webui:9.6:*:*:*:*:*:*:*

History

07 Nov 2025, 16:19

Type	Values Removed	Values Added
First Time		Lollms Lollms lollms-webui
CPE	cpe:2.3:a:parisneo:lollms-webui:9.6:::::::*	cpe:2.3:a:lollms:lollms-webui:9.6:::::::*

Information

Published : 2024-06-23 15:15

Updated : 2025-11-07 16:19

NVD link : CVE-2024-4841

Mitre link : CVE-2024-4841

CVE.ORG link : CVE-2024-4841

JSON object : View

Products Affected

lollms

lollms-webui

CWE

CWE-29

Path Traversal: '\..\filename'

{"id": "CVE-2024-4841", "cveTags": [], "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 4.0, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.5}], "cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.3, "attackVector": "LOCAL", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 1.8}]}, "published": "2024-06-23T15:15:09.233", "references": [{"url": "https://huntr.com/bounties/740dda3e-7104-4ccf-9ac4-8870e4d6d602", "tags": ["Exploit", "Third Party Advisory"], "source": "[email protected]"}, {"url": "https://huntr.com/bounties/740dda3e-7104-4ccf-9ac4-8870e4d6d602", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-29"}]}], "descriptions": [{"lang": "en", "value": "A Path Traversal vulnerability exists in the parisneo/lollms-webui, specifically within the 'add_reference_to_local_mode' function due to the lack of input sanitization. This vulnerability affects versions v9.6 to the latest. By exploiting this vulnerability, an attacker can predict the folders, subfolders, and files present on the victim's computer. The vulnerability is present in the way the application handles the 'path' parameter in HTTP requests to the '/add_reference_to_local_model' endpoint."}, {"lang": "es", "value": "Existe una vulnerabilidad de Path Traversal en parisneo/lollms-webui, espec\u00edficamente dentro de la funci\u00f3n 'add_reference_to_local_mode' debido a la falta de sanitizaci\u00f3n de entrada. Esta vulnerabilidad afecta a las versiones v9.6 hasta la \u00faltima. Al explotar esta vulnerabilidad, un atacante puede predecir las carpetas, subcarpetas y archivos presentes en la computadora de la v\u00edctima. La vulnerabilidad est\u00e1 presente en la forma en que la aplicaci\u00f3n maneja el par\u00e1metro 'ruta' en las solicitudes HTTP al endpoint '/add_reference_to_local_model'."}], "lastModified": "2025-11-07T16:19:44.657", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:lollms:lollms-webui:9.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8161B4F7-AE3F-4A7D-9B47-131C1AA3EC6F"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}