| Title | PromtEngineer localGPT Latest (commit 4d41c7d) Unrestricted File Upload |
|---|
| Description | n unrestricted file upload vulnerability in the "Upload Files" feature allows any user to upload files of arbitrary types and sizes without authentication, an attacker can exploit this to exhaust server disk space, leading to a Denial of Service (DoS) condition that affects all users of the system. |
|---|
| Source | ⚠️ https://github.com/August829/CVEP/issues/7 |
|---|
| User | Yu_Bao (UID 89348) |
|---|
| Submission | 03/12/2026 03:46 (17 days ago) |
|---|
| Moderation | 03/27/2026 14:49 (15 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 353888 [PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054 backend/server.py do_POST unrestricted upload] |
|---|
| Points | 17 |
|---|