Vulnerabilities in khoj-ai
4 resultsCVE-2024-25639MEDIUMPrompt Injection triggered XSS vulnerability in Khoj Obsidian, Desktop and Web clientsEPSS 0.6%CVE-2024-43396MEDIUMKhoj Vulnerable to Stored Cross-site Scripting In Automate (Preview feature)EPSS 0.5%CVE-2024-52294MEDIUMkhoj has an IDOR in subscription management that allows unauthorized subscription modificationsEPSS 0.4%CVE-2025-69207MEDIUMKhoj has an IDOR in Notion OAuth Flow Enables Index PoisoningEPSS 0.4%