XSS in Danny-avila Librechat

CVE-2025-66450

LibreChat is a ChatGPT clone with additional features. In versions 0.8.0 and below, when a user posts a question, the iconURL parameter of the POST request can be modified by an attacker. The malicious code is then stored in the chat which…

EPSS: 0.000 (8.0th percentile) — read the EPSS interpretation.

Affected products

Danny-avila Librechat — versions < 0.8.1

Weakness classification (CWE)

CWE-80 — Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

References

https://github.com/danny-avila/LibreChat/security/advisories/GHSA-84vx-vmcf-xgpp (x_refsource_CONFIRM)
https://github.com/danny-avila/LibreChat/commit/6fa94d3eb8f5779363226d10dccf8b01a735744c (x_refsource_MISC)