RVC-Boss GPT-SoVITS Command Injection Vulnerability in WebUI

A command injection vulnerability has been identified in RVC-Boss GPT-SoVITS WebUI, specifically in versions through 20250228v3. The issue arises in the 'open_slice' function of 'webui.py', where user input from 'slice_opt_root' and 'slice-inp-path' is concatenated into a command and executed on the server. This flaw allows for arbitrary command execution. Similar command injection vulnerabilities exist in the 'open_denoise', 'open_asr', and 'change_label' functions, all leading to the same consequence of arbitrary command execution.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the server where GPT-SoVITS is running.

Reproduction

To reproduce this vulnerability, send a request to the GPT-SoVITS WebUI with crafted input that includes malicious commands. The input should be directed to the 'open_slice' function, specifically through the 'slice_opt_root' and 'slice-inp-path' parameters. Once the input is received, the 'open_slice' function will execute the concatenated command on the server, leading to arbitrary command execution. This vulnerability can also be reproduced by using the 'open_denoise', 'open_asr', or 'change_label' functions with similar crafted input.