Known vulnerabilities in LibreChat RAG API

Vendor: LibreChat
Website: https://www.librechat.ai/
Total Security Bulletins: 2

Security bulletins (2)

Secuity bulletin Severity Status Published
SB2026031703: Log injection in LibreChat RAG API Medium
Not patched
17.03.2026
SB2026031701: Two path traversal vulnerabilities in LibreChat RAG API Medium
Patched Public exploit
17.03.2026