Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-68492
CVE-2025-68492
Chainlit versions prior to 2.8.5 contain an authorization bypass through user-controlled key vulnerability. If this vulnerability is exploited, threads may be viewed or thread ownership may be obtained by an attacker who can log in to the product.
Published Jan 15, 2026
https://github.com/advisories/GHSA-v492-6xx2-p57g
CVSS Score
Low
2.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
pypi
chainlit
0.7.500
pypi
chainlit
0.7.501
pypi
chainlit
0.7.600rc0
pypi
chainlit
0.7.600rc1
pypi
chainlit
0.7.601rc0
pypi
chainlit
0.7.602
pypi
chainlit
0.7.602rc0
pypi
chainlit
0.7.603
pypi
chainlit
0.7.604
pypi
chainlit
0.7.604rc0
pypi
chainlit
0.7.604rc1
pypi
chainlit
0.7.604rc2
pypi
chainlit
0.7.700
pypi
chainlit
1.0.0
pypi
chainlit
1.0.0rc0
pypi
chainlit
1.0.0rc1
pypi
chainlit
1.0.0rc2
pypi
chainlit
1.0.0rc3
pypi
chainlit
1.0.100
pypi
chainlit
1.0.101
pypi
chainlit
1.0.200
pypi
chainlit
1.0.300
pypi
chainlit
1.0.301
pypi
chainlit
1.0.400
pypi
chainlit
1.0.401
pypi
chainlit
1.0.500
pypi
chainlit
1.0.501
pypi
chainlit
1.0.502
pypi
chainlit
1.0.503
pypi
chainlit
1.0.504
pypi
chainlit
1.0.505
pypi
chainlit
1.0.506
pypi
chainlit
1.1.0
pypi
chainlit
1.1.0rc0
pypi
chainlit
1.1.0rc1
pypi
chainlit
1.1.101
pypi
chainlit
1.1.200
pypi
chainlit
1.1.201
pypi
chainlit
1.1.202
pypi
chainlit
1.1.300
pypi
chainlit
1.1.300rc0
pypi
chainlit
1.1.300rc1
pypi
chainlit
1.1.300rc2
pypi
chainlit
1.1.300rc3
pypi
chainlit
1.1.300rc4
pypi
chainlit
1.1.300rc5
pypi
chainlit
1.1.301
pypi
chainlit
1.1.302
pypi
chainlit
1.1.303
pypi
chainlit
1.1.304
1-50 of 176
CVE-2025-68492 | Components Impacted | Sonatype Guide | Sonatype Guide
