CVE-2026-54027 | danny-avila LibreChat up to 0.8.4 Image Endpoint /api/files/images authorization (GHSA-c55r-p24w-hcj5)

A vulnerability labeled as problematic has been found in danny-avila LibreChat. Impacted is an unknown function of the file /api/files/images of the component Image Endpoint. The manipulation results in missing authorization.

This vulnerability is known as CVE-2026-54027. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More