Vulnerability in Stoatchat
CVE-2025-71377
stoatchat (delta) versions before 20250210-1 (0.8.2) contain a logic error in the query messages route. When fetching messages 'nearby' another message, the database query can be given a message limit of zero, which the database interprets…
Affected products
- Stoatchat — versions 0, 20250210-1 (0.8.2)
Weakness classification (CWE)
References
- disclosure@vulncheck.com (vendor-advisory)
- disclosure@vulncheck.com (patch)
- disclosure@vulncheck.com (third-party-advisory)