CVE-2026-46372 | SillyTavern up to 1.17.x User Interface /api/search/searxng server-side request forgery

A vulnerability was found in SillyTavern up to 1.17.x. It has been rated as critical. Impacted is an unknown function of the file /api/search/searxng of the component User Interface. This manipulation causes server-side request forgery.

The identification of this vulnerability is CVE-2026-46372. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More