Astrbot vulnerabilities
7 known vulnerabilities affecting astrbot/astrbot.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2LOW2
Vulnerabilities
Page 1 of 1
CVE-2025-57698P3HIGHCVSS 7.5v3.5.222025-11-07
CVE-2025-57698 [HIGH] CWE-22 CVE-2025-57698: AstrBot Project v3.5.22 contains a directory traversal vulnerability. The handler function install_p
AstrBot Project v3.5.22 contains a directory traversal vulnerability. The handler function install_plugin_upload of the interface '/plugin/install-upload' parses the filename from the request body provided by the user, and directly uses the filename to assign to file_path without checking the validity of the filename. The variable file_path is then pas
ghsanvdosv
CVE-2026-7579P3MEDIUM≥ 0, ≤ 4.16.02026-05-01
CVE-2026-7579 [MEDIUM] CWE-259 AstrBot Makes Use of Hard-coded Password
AstrBot Makes Use of Hard-coded Password
A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early abou
ghsa
CVE-2025-48957P3HIGHCVSS 7.5≥ 3.4.4, < 3.5.132025-06-02
CVE-2025-48957 [HIGH] CWE-23 CVE-2025-48957: AstrBot is a large language model chatbot and development framework. A path traversal vulnerability
AstrBot is a large language model chatbot and development framework. A path traversal vulnerability present in versions 3.4.4 through 3.5.12 may lead to information disclosure, such as API keys for LLM providers, account passwords, and other sensitive data. The vulnerability has been addressed in Pull Request #1676 and is included in version 3.5.13. As
ghsanvdosv
CVE-2025-55449P3HIGHCVSS 7.3v3.5.152026-05-08
CVE-2025-55449 [HIGH] CWE-321 CVE-2025-55449: AstrBotDevs AstrBot 3.5.15 has Advanced_System_for_Text_Response_and_Bot_Operations_Tool as the hard
AstrBotDevs AstrBot 3.5.15 has Advanced_System_for_Text_Response_and_Bot_Operations_Tool as the hardcoded private key used to sign a JWT.
ghsanvdosv
CVE-2026-8754P3LOW≥ 0, < 4.23.62026-05-17
CVE-2026-8754 [LOW] CWE-22 AstrBot: File upload vulnerability in the function post_file of the file astrbot/dashboard/routes/chat.py
AstrBot: File upload vulnerability in the function post_file of the file astrbot/dashboard/routes/chat.py
A vulnerability was detected in AstrBotDevs AstrBot up to 4.23.5. Impacted is the function post_file of the file astrbot/dashboard/routes/chat.py of the component File Upload Handler. The manipulation of the argument filename results in path traversal. It is p
ghsa
CVE-2025-57697P3MEDIUMCVSS 6.5v3.5.222025-11-07
CVE-2025-57697 [MEDIUM] CWE-125 CVE-2025-57697: AstrBot Project v3.5.22 has an arbitrary file read vulnerability in function _encode_image_bs64. Sin
AstrBot Project v3.5.22 has an arbitrary file read vulnerability in function _encode_image_bs64. Since the _encode_image_bs64 function defined in entities.py opens the image specified by the user in the request body and returns the image content as a base64-encoded string without checking the legitimacy of the image path, attackers can construct a s
ghsanvdosv
CVE-2026-6984P4LOW≥ 0, ≤ 4.22.12026-04-25
CVE-2026-6984 [LOW] CWE-791 AstrBot has Incomplete Filtering of Special Elements
AstrBot has Incomplete Filtering of Special Elements
A security flaw has been discovered in AstrBotDevs AstrBot up to 4.22.1. This affects the function create_template of the file astrbot/dashboard/routes/t2i.py of the component Dashboard API. The manipulation results in improper neutralization of special elements used in a template engine. The attack can be executed remotely. The exploit has been released to the p
ghsa