Submit #593611: frdel agent-zero <0.8.4.1 Arbitrary File Read
| Title | frdel agent-zero <0.8.4.1 Arbitrary File Read |
|---|---|
| Description | agent-zero does not perform additional validation on the passed path parameters when processing the `/image_get ` route, resulting in arbitrary file read. |
| Source | ⚠️ https:/ |
| User | Anonymous User |
| Submission | 06/10/2025 03:51 (10 months ago) |
| Moderation | 06/15/2025 21:12 (6 days later) |
| Status | Accepted |
| VulDB entry | 312641 [frdel Agent-Zero up to 0.8.4 /python/api/image_get.py image_get path path traversal] |
| Points | 16 |