Prolix-Oc Lumiverse vulnerabilities
5 known vulnerabilities affecting prolix-oc/lumiverse.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-44450P2CRITICALCVSS 9.9fixed in 0.9.72026-05-26
CVE-2026-44450 [CRITICAL] CWE-88 CVE-2026-44450: Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint v
Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code execution flag (-e for node/bun, -c for python3/deno), givin
nvd
CVE-2026-44449P3CRITICALCVSS 9.1fixed in 0.9.72026-05-26
CVE-2026-44449 [CRITICAL] CWE-88 CVE-2026-44449: Lumiverse is a full-featured AI chat application. Prior to 0.9.7, when the primary toSmbPath(fullPat
Lumiverse is a full-featured AI chat application. Prior to 0.9.7, when the primary toSmbPath(fullPath) call throws, the method falls back to a dirname/basename split and only validates the directory prefix. The basename is concatenated directly into the smbclient -c script without validation. smbclient interprets ; as a subcommand separator and !cm
nvd
CVE-2026-44444P3CRITICALCVSS 9.1fixed in 0.9.72026-05-26
CVE-2026-44444 [CRITICAL] CWE-78 CVE-2026-44444: Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the Spindle extension build pipeli
Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the Spindle extension build pipeline calls bun install without the --ignore-scripts flag before running the static backend safety scan (assertSafeBackendBundle). A malicious extension that ships a package.json with a preinstall, postinstall, or prepare lifecycle script achieves host-
nvd
CVE-2026-44451P3CRITICALCVSS 9.3fixed in 0.9.72026-05-26
CVE-2026-44451 [CRITICAL] CWE-693 CVE-2026-44451: Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the component override system tran
Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the component override system transpiles user-supplied TSX via Sucrase and evaluates it with new Function, shadowing dangerous globals (fetch, window, eval, etc.) with undefined. A static source validator (validateComponentOverrideSource) additionally blocks these identifiers by wor
nvd
CVE-2026-44443P4MEDIUMCVSS 4.8fixed in 0.9.72026-05-26
CVE-2026-44443 [MEDIUM] CWE-362 CVE-2026-44443: Lumiverse is a full-featured AI chat application. Prior to 0.9.7, consumeNonce() only checks that th
Lumiverse is a full-featured AI chat application. Prior to 0.9.7, consumeNonce() only checks that the module-level variable is set and unexpired. It does not validate any value from the incoming HTTP request or bind the nonce to the admin's session. If the admin's auth.api.signUpEmail() call fails before the before hook fires (e.g. BetterAuth reject
nvd