Primary

Context

Chainlit Server-Side Request Forgery Vulnerability in SQLAlchemy Data Layer

Vulnerability

A server-side request forgery (SSRF) vulnerability exists in Chainlit versions prior to 2.9.4, specifically within the SQLAlchemy data layer backend. The issue arises during the '/project/element' update process, where an authenticated client can input a user-controlled URL. This URL is then fetched via an outbound HTTP GET request, allowing attackers to make arbitrary requests from the Chainlit server to internal network services or cloud metadata endpoints. The responses can be stored using the configured storage provider.

Impact

Exploitation of this vulnerability allows for server-side request forgery, enabling attackers to make unauthorized HTTP requests from the Chainlit server to internal services or cloud metadata endpoints, potentially leading to the exposure of sensitive information or manipulation of internal services.

Remediation

Users are advised to update to Chainlit version 2.9.4 or later, where this vulnerability has been fixed.

Added: Jan 20, 2026, 12:19 AM

Updated: Jan 20, 2026, 12:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Chainlit Server-Side Request Forgery Vulnerability in SQLAlchemy Data Layer

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating