TransformerOptimus SuperAGI Path Traversal Vulnerability in Multipart Upload Handler

A path traversal vulnerability has been identified in TransformerOptimus SuperAGI versions through 0.0.14. The issue resides in the 'Upload' function of the 'superagi/controllers/resources.py' file, within the Multipart Upload Handler component. The vulnerability allows remote attackers to manipulate the 'name' argument, leading to arbitrary file writes on the server's filesystem. In the default development environment, this endpoint does not require authentication, further exacerbating the risk.

Impact

Exploitation of this vulnerability allows for arbitrary file writes, with the potential to overwrite critical system files, application code, or configuration files. Such actions could lead to a complete system compromise or a denial-of-service condition. Notably, overwriting executable files or Python libraries could facilitate remote code execution on the backend server.

Reproduction

To reproduce this vulnerability, upload a file through the '/resources/add/{agent_id}' endpoint using a path traversal payload in the 'file.filename' attribute. The 'name' field must contain a legitimate file extension to bypass the application's extension check. Once the file is uploaded, verify that the payload has successfully traversed the directory structure and written to the desired location, such as the '/tmp' directory.