Vulnerabilities in Chainlit

4 results

CVE-2026-22218HIGHChainlit < 2.9.4 Arbitrary File Read via /project/elementEPSS 8.8%CVE-2026-22219HIGHChainlit < 2.9.4 SQLAlchemy Data Layer SSRF via /project/elementEPSS 4.4%CVE-2026-56104HIGHChainlit < 2.10.1 Session Hijacking via WebSocket Session RestorationEPSS 0.3%CVE-2025-68492LOWChainlit versions prior to 2.8.5 contain an authorization bypass through user-controlled key vulnerability. If this vulnerability is exploitEPSS 0.2%