CVE-2024-32964

CRITICAL NUCLEI

lobehub/lobe_chat < 0.150.6 - Unauthenticated Server-Side Request Forgery via /api/proxy Endpoint

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-32964. PoCs published by StephenQSstarThomas. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2024-32964, targeting LobeChat via an SSRF vulnerability. It includes Dockerized environments for both attacker and victim, along with automated testing and evaluation frameworks.

Description

Lobe Chat is a chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Prior to 0.150.6, lobe-chat had an unauthorized Server-Side Request Forgery vulnerability in the /api/proxy endpoint. An attacker can construct malicious requests to cause Server-Side Request Forgery without logging in, attack intranet services, and leak sensitive information.

Exploits (1)

nomisec WORKING POC 1 stars

by StephenQSstarThomas · poc

https://github.com/StephenQSstarThomas/aaa-agentxploit-example

View Code ZIP pw:eip

This repository contains a functional exploit PoC for CVE-2024-32964, targeting LobeChat via an SSRF vulnerability. It includes Dockerized environments for both attacker and victim, along with automated testing and evaluation frameworks.

Classification

Working Poc 90%

Attack Type

Ssrf

Complexity

Moderate

Reliability

Reliable

Target: LobeChat (versions 0.150.5, 0.162.13, 1.19.12, 1.136.1)

No auth needed

Prerequisites: Docker environment · Network access to target

MITRE ATT&CK

T1189 - Drive-by Compromise T1090 - Proxy

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Nuclei Templates (1)

Lobe Chat <= v0.150.5 - Server-Side Request Forgery

CRITICALVERIFIEDby s4e-io

FOFA: icon_hash="1975020705"

References (2)

Core 2

Core References

Exploit, Vendor Advisory x_refsource_confirm

https://github.com/lobehub/lobe-chat/security/advisories/GHSA-mxhq-xw3g-rphc

Patch x_refsource_misc

https://github.com/lobehub/lobe-chat/commit/465665a735556669ee30446c7ea9049a20cc7c37

View Patch ZIP pw:eip

Scores

CVSS v3 9.0

EPSS 0.6936

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-918

Status published

Products (2)

lobehub/chat 0 - 0.150.6npm

lobehub/lobe_chat < 0.150.6

Published May 14, 2024

Tracked Since Feb 18, 2026