CVE-2026-44653 | danny-avila LibreChat up to 0.8.3 API Response /api/mcp/servers insertion of sensitive information into sent data (GHSA-6vqg-rgpm-qvf9)

A vulnerability described as problematic has been identified in danny-avila LibreChat up to 0.8.3. The affected element is an unknown function of the file /api/mcp/servers of the component API Response Handler. Executing a manipulation can lead to insertion of sensitive information into sent data.

The identification of this vulnerability is CVE-2026-44653. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More