Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Langfuse SSRF Vulnerability: Missing Secret Key Validation on LLM Base URL Change

github.com 2026-05-08English translation pending; showing Chinese查看中文 →
Security AdvisoryHighLangfuse
Affected:
  • Langfuse platform (versions prior to 7527bb0)
Fixed in:
  • 7527bb0
Referenced CVEs: CVE-2026-41487
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.
More from this source
Linkwarden Stored XSS via Client-Side Archive Upload 2026-05-09 LinkWarden SSRF Vulnerability: Cloud Metadata Credential Theft 2026-05-09 pupnp CVE-2026-6582 SSRF via Port Truncation in parse_uri 2026-05-09 pupnp release-1.18.5 fixes CVE-2026-41682 vulnerability 2026-05-09 Sentry SSO Setup Identity Confusion Vulnerability Fix Analysis 2026-05-09