Main Vulnerability Database Vulnerabilities #VU133254

Server-Side Request Forgery (SSRF) in LibreChat - #VU133254

Published: June 3, 2026

Vulnerability identifier: #VU133254

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/U:Clear

CVE-ID: N/A

CWE-ID: CWE-918

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: LibreChat

Affected software:
LibreChat

Detailed vulnerability description

The vulnerability allows a remote user to disclose sensitive information from internal network resources.

The vulnerability exists due to server-side request forgery (SSRF) in user-configured API endpoint baseURL handling when constructing HTTP requests from a user-supplied baseURL. A remote user can set a crafted baseURL pointing to an internal address to disclose sensitive information from internal network resources.

The configured API key may be forwarded in the Authorization header to the target endpoint.

Remediation

Install security update from vendor's website.

Sources

https://github.com/danny-avila/LibreChat/security/advisories/GHSA-gc9r-88c3-7qhq

Server-Side Request Forgery (SSRF) in LibreChat - #VU133254

Detailed vulnerability description

Remediation

Sources

Please verify you're human