V
Vexday
by TrueHacking
›
PT
ES
EN
Intelligence
▾
Intelligence
Exploit Timeline
risk queue
Threats
ransomware · malware
Overview
observatory
Explore
▾
Explore
CVEs
Technologies
Vendors
Weakness types
Briefing
Live
Home
/
Technologies
/
LibreChat
Vulnerabilities in
LibreChat
2 results
CVE-2026-4276
HIGH
LibreChat RAG API, version 0.7.0, contains a log-injection vulnerability that allows attackers to forge log entries.
EPSS
0.3%
CVE-2026-33265
MEDIUM
In LibreChat 0.8.1-rc2, a logged-in user obtains a JWT for both the LibreChat API and the RAG API.
EPSS
0.2%