← العودة للجدول
CVE-2026-16075
CVE-2026-16075 — A flaw has been found in AstrBotDevs AstrBot up to 4.25.5. This vulnerability af
📅 2026-07-18
🟡 Medium 🔥 No NVD Exploit Exploit CVSS 4.3

📋 الوصف الكامل

A flaw has been found in AstrBotDevs AstrBot up to 4.25.5. This vulnerability affects the function OpenApiRoute.get_chat_sessions of the file astrbot/dashboard/routes/open_api.py of the component session-listing Endpoint. This manipulation of the argument Username causes authorization bypass. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor

💻 الأنظمة المتأثرة

⚠️ نوع التهديد

Exploit

🔗 CVE ID

CVE-2026-16075

📡 المصدر

NVD

✅ الحلول والتخفيف

Refer to CVE-2026-16075 NVD advisory

🔗 المصدر الأصلي ← 📘 NVD ← ⚡ CISA KEV ← 🔍 Valters IT ←