Login Sign Up

CVE-2024-5278

6.1 MEDIUM
Remote Code Execution Cross-Site Scripting

📋 TL;DR

This vulnerability allows attackers to upload malicious files to the gaizhenbiao/chuanhuchatgpt application due to insufficient file validation. Attackers can upload HTML files with XSS payloads or Python scripts, potentially leading to stored XSS attacks and remote code execution. Anyone running the vulnerable version of this software is affected.

💻 Affected Systems

Products:
  • gaizhenbiao/chuanhuchatgpt
Versions: All versions up to and including the latest as of 20240310
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: The vulnerability exists in the default configuration of the application.

📦 What is this software?

Chuanhuchatgpt by Gaizhenbiao

View all CVEs affecting Chuanhuchatgpt →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution on the server hosting the application, allowing complete system compromise.

🟠

Likely Case

Stored XSS attacks leading to session hijacking, credential theft, or defacement of the application.

🟢

If Mitigated

Limited impact with proper file validation and server hardening in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

The vulnerability is simple to exploit with basic HTTP requests to the /upload endpoint.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in commit 22007a77f037c0cf76180f9b73a8d19e87dad02e

Vendor Advisory: https://github.com/gaizhenbiao/chuanhuchatgpt/commit/22007a77f037c0cf76180f9b73a8d19e87dad02e

Restart Required: Yes

Instructions:

1. Pull the latest code from the GitHub repository. 2. Apply commit 22007a77f037c0cf76180f9b73a8d19e87dad02e. 3. Restart the application service.

🔧 Temporary Workarounds

Disable file upload endpoint

all

Temporarily disable the /upload endpoint in the application configuration or web server.

# Modify application configuration to remove/disable upload functionality

Implement web application firewall rules

linux

Block file uploads with dangerous extensions at the WAF or reverse proxy level.

# Example nginx rule to block certain file uploads
location /upload {
    deny all;
}

🧯 If You Can't Patch

  • Implement strict file type validation at the application level before accepting uploads.
  • Run the application in a sandboxed environment with minimal privileges to limit RCE impact.

🔍 How to Verify

Check if Vulnerable:

Attempt to upload a file with a .html or .py extension to the /upload endpoint. If successful without validation, the system is vulnerable.

Check Version:

Check the git commit hash or version metadata in the application.

Verify Fix Applied:

Attempt the same upload test after patching. The upload should be rejected or properly validated.

📡 Detection & Monitoring

Log Indicators:

  • Unusual file uploads to /upload endpoint
  • Uploads of .html, .py, or other executable file types

Network Indicators:

  • HTTP POST requests to /upload with suspicious file content

SIEM Query:

source="web_server" AND (uri="/upload" AND (file_extension="html" OR file_extension="py"))

📊 Metadata

CVE ID: CVE-2024-5278
CVSS v3 Score: 6.1 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CWE: CWE-434
Published: June 6, 2024
Last Updated: October 15, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-5278, you might also want to check these:

CVE-2024-52490 10.0

This vulnerability allows attackers to upload arbitrary files, including web shells, to Pathomation ...

Same vulnerability type (CWE-434)
CVE-2024-43160 10.0

CVE-2024-43160 is an unauthenticated arbitrary file upload vulnerability in the BerqWP WordPress plu...

Same vulnerability type (CWE-434)
CVE-2024-8940 10.0

CVE-2024-8940 is a critical unrestricted file upload vulnerability in Scriptcase version 9.4.019 tha...

Same vulnerability type (CWE-434)