CVE-2026-22252 | danny-avila LibreChat up to 0.8.2-rc1 API Request improper authorization (GHSA-cxhj-j78r-p88f)

A vulnerability has been found in danny-avila LibreChat up to 0.8.2-rc1 and classified as critical. This vulnerability affects unknown code of the component API Request Handler. Performing a manipulation results in improper authorization.

This vulnerability is reported as CVE-2026-22252. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More