Submit #593615: OpenBMB XAgent <=v1.0.0 Path Traversalinfo

Title	OpenBMB XAgent <=v1.0.0 Path Traversal
Description	XAgent does not perform permission authentication on the `/conv/community ` route and does not verify the parameters passed, resulting in path traversal.
Source	⚠️ https://github.com/OpenBMB/XAgent/issues/415
User	Anonymous User
Submission	06/10/2025 04:06 (10 months ago)
Moderation	06/19/2025 08:59 (9 days later)
Status	Accepted
VulDB entry	313285 [OpenBMB XAgent up to 1.0.0 /conv/community path traversal]
Points	15

Do you want to use VulDB in your project?

Use the official API to access entries easily!