CVE-2026-7178 MEDIUM

CVE-2026-7178: ChatGPTNextWeb NextChat Artifacts Endpoint route.ts storeUrl server-side request forgery

Vendor Chatgptnextweb

Product NextChat

Weakness CWE-918 · SSRF

Published April 27, 2026

Last update April 28, 2026

View on NVD All CVEs

CVSS base score

6.9/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A weakness has been identified in ChatGPTNextWeb NextChat up to 2.16.1. This affects the function storeUrl of the file app/api/artifacts/route.ts of the component Artifacts Endpoint. This manipulation of the argument ID causes server-side request forgery. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

Key dates

02Disclosure timeline

April 27, 2026 CVE published

April 28, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-7178

Related vulnerabilities

Identifiers

CVE CVE-2026-7178

CWE CWE-918

CVSS 6.9 / MEDIUM

Affected versions

Vendor Chatgptnextweb

Product NextChat

Affected 2.16.0

Vendor Chatgptnextweb

Product NextChat

Affected 2.16.1

CVE-2026-7178: ChatGPTNextWeb NextChat Artifacts Endpoint route.ts storeUrl server-side request forgery

01Description

02Disclosure timeline

03References

04Related CVE