CVE-2025-59426Open Redirect in Lobe-chat

CWE-601Open Redirect3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 63.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Lobehub Lobe-chatLobehub Lobe ChatLobehub Chat
Timeline
Latest updateSep 24
PublishedSep 25

Description

Lobe Chat is an open-source artificial intelligence chat framework. Prior to version 1.130.1, the project's OIDC redirect handling logic constructs the host and protocol of the final redirect URL based on the X-Forwarded-Host or Host headers and the X-Forwarded-Proto value. In deployments where a reverse proxy forwards client-supplied X-Forwarded-* headers to the origin as-is, or where the origin trusts them without validation, an attacker can inject an arbitrary host and trigger an open redirec

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages3 packages

npmlobehub/chat< 1.130.1
CVEListV5lobehub/lobe-chat< 1.130.1
NVDlobehub/lobe_chat< 1.130.1

Patches

Patch: github.com

🔴Vulnerability Details

2
GHSA
lobe-chat has an Open Redirect2025-09-24
OSV
lobe-chat has an Open Redirect2025-09-24