{"id":"CVE-2026-7223","summary":"BigSweetPotatoStudio HyperChat AI Proxy Middleware aiProxyMiddleware.mts fetch server-side request forgery","details":"A vulnerability was identified in BigSweetPotatoStudio HyperChat up to 2.0.0-alpha.63. Affected by this issue is the function fetch of the file packages/core/src/http/aiProxyMiddleware.mts of the component AI Proxy Middleware. Such manipulation of the argument baseurl leads to server-side request forgery. The attack can be launched remotely. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.","aliases":["GHSA-r2jq-4h3x-rfj6"],"modified":"2026-07-15T01:49:08.932331453Z","published":"2026-04-28T04:00:15.598Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/7xxx/CVE-2026-7223.json","unresolved_ranges":[{"extracted_events":[{"introduced":"2.0.0-alpha.0"},{"last_affected":"2.0.0-alpha.0"},{"introduced":"2.0.0-alpha.2"},{"last_affected":"2.0.0-alpha.2"},{"introduced":"2.0.0-alpha.3"},{"last_affected":"2.0.0-alpha.3"},{"introduced":"2.0.0-alpha.4"},{"last_affected":"2.0.0-alpha.4"},{"introduced":"2.0.0-alpha.5"},{"last_affected":"2.0.0-alpha.5"},{"introduced":"2.0.0-alpha.6"},{"last_affected":"2.0.0-alpha.6"},{"introduced":"2.0.0-alpha.7"},{"last_affected":"2.0.0-alpha.7"},{"introduced":"2.0.0-alpha.8"},{"last_affected":"2.0.0-alpha.8"},{"introduced":"2.0.0-alpha.9"},{"last_affected":"2.0.0-alpha.9"},{"introduced":"2.0.0-alpha.10"},{"last_affected":"2.0.0-alpha.10"},{"introduced":"2.0.0-alpha.11"},{"last_affected":"2.0.0-alpha.11"},{"introduced":"2.0.0-alpha.12"},{"last_affected":"2.0.0-alpha.12"},{"introduced":"2.0.0-alpha.13"},{"last_affected":"2.0.0-alpha.13"},{"introduced":"2.0.0-alpha.14"},{"last_affected":"2.0.0-alpha.14"},{"introduced":"2.0.0-alpha.15"},{"last_affected":"2.0.0-alpha.15"},{"introduced":"2.0.0-alpha.16"},{"last_affected":"2.0.0-alpha.16"},{"introduced":"2.0.0-alpha.17"},{"last_affected":"2.0.0-alpha.17"},{"introduced":"2.0.0-alpha.18"},{"last_affected":"2.0.0-alpha.18"},{"introduced":"2.0.0-alpha.30"},{"last_affected":"2.0.0-alpha.30"},{"introduced":"2.0.0-alpha.35"},{"last_affected":"2.0.0-alpha.35"},{"introduced":"2.0.0-alpha.36"},{"last_affected":"2.0.0-alpha.36"},{"introduced":"2.0.0-alpha.37"},{"last_affected":"2.0.0-alpha.37"},{"introduced":"2.0.0-alpha.38"},{"last_affected":"2.0.0-alpha.38"},{"introduced":"2.0.0-alpha.40"},{"last_affected":"2.0.0-alpha.40"},{"introduced":"2.0.0-alpha.42"},{"last_affected":"2.0.0-alpha.42"},{"introduced":"2.0.0-alpha.44"},{"last_affected":"2.0.0-alpha.44"},{"introduced":"2.0.0-alpha.45"},{"last_affected":"2.0.0-alpha.45"},{"introduced":"2.0.0-alpha.46"},{"last_affected":"2.0.0-alpha.46"},{"introduced":"2.0.0-alpha.47"},{"last_affected":"2.0.0-alpha.47"},{"introduced":"2.0.0-alpha.48"},{"last_affected":"2.0.0-alpha.48"},{"introduced":"2.0.0-alpha.49"},{"last_affected":"2.0.0-alpha.49"},{"introduced":"2.0.0-alpha.55"},{"last_affected":"2.0.0-alpha.55"}],"source":"AFFECTED_FIELD"}],"cna_assigner":"VulDB","cwe_ids":["CWE-918"]},"references":[{"type":"WEB","url":"https://github.com/BigSweetPotatoStudio/HyperChat/"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/7xxx/CVE-2026-7223.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-7223"},{"type":"ADVISORY","url":"https://vuldb.com/submit/802265"},{"type":"ADVISORY","url":"https://vuldb.com/vuln/359823"},{"type":"REPORT","url":"https://github.com/BigSweetPotatoStudio/HyperChat/issues/142"},{"type":"REPORT","url":"https://vuldb.com/vuln/359823/cti"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/bigsweetpotatostudio/hyperchat","events":[{"introduced":"649a9b26ca13d34bb79140fc2c5d1dcccb4470e3"},{"last_affected":"3f9cf0341c44621a7282c0ca6203ae5849313701"}],"database_specific":{"extracted_events":[{"introduced":"2.0.0-alpha.1"},{"last_affected":"2.0.0-alpha.1"},{"introduced":"2.0.0-alpha.19"},{"last_affected":"2.0.0-alpha.19"},{"introduced":"2.0.0-alpha.20"},{"last_affected":"2.0.0-alpha.20"},{"introduced":"2.0.0-alpha.21"},{"last_affected":"2.0.0-alpha.21"},{"introduced":"2.0.0-alpha.22"},{"last_affected":"2.0.0-alpha.22"},{"introduced":"2.0.0-alpha.23"},{"last_affected":"2.0.0-alpha.23"},{"introduced":"2.0.0-alpha.24"},{"last_affected":"2.0.0-alpha.24"},{"introduced":"2.0.0-alpha.25"},{"last_affected":"2.0.0-alpha.25"},{"introduced":"2.0.0-alpha.26"},{"last_affected":"2.0.0-alpha.26"},{"introduced":"2.0.0-alpha.27"},{"last_affected":"2.0.0-alpha.27"},{"introduced":"2.0.0-alpha.28"},{"last_affected":"2.0.0-alpha.28"},{"introduced":"2.0.0-alpha.29"},{"last_affected":"2.0.0-alpha.29"},{"introduced":"2.0.0-alpha.31"},{"last_affected":"2.0.0-alpha.31"},{"introduced":"2.0.0-alpha.32"},{"last_affected":"2.0.0-alpha.32"},{"introduced":"2.0.0-alpha.33"},{"last_affected":"2.0.0-alpha.33"},{"introduced":"2.0.0-alpha.34"},{"last_affected":"2.0.0-alpha.34"},{"introduced":"2.0.0-alpha.39"},{"last_affected":"2.0.0-alpha.39"},{"introduced":"2.0.0-alpha.41"},{"last_affected":"2.0.0-alpha.41"},{"introduced":"2.0.0-alpha.43"},{"last_affected":"2.0.0-alpha.43"},{"introduced":"2.0.0-alpha.50"},{"last_affected":"2.0.0-alpha.50"},{"introduced":"2.0.0-alpha.51"},{"last_affected":"2.0.0-alpha.51"},{"introduced":"2.0.0-alpha.52"},{"last_affected":"2.0.0-alpha.52"},{"introduced":"2.0.0-alpha.53"},{"last_affected":"2.0.0-alpha.53"},{"introduced":"2.0.0-alpha.54"},{"last_affected":"2.0.0-alpha.54"},{"introduced":"2.0.0-alpha.56"},{"last_affected":"2.0.0-alpha.56"},{"introduced":"2.0.0-alpha.57"},{"last_affected":"2.0.0-alpha.57"},{"introduced":"2.0.0-alpha.58"},{"last_affected":"2.0.0-alpha.58"},{"introduced":"2.0.0-alpha.59"},{"last_affected":"2.0.0-alpha.59"},{"introduced":"2.0.0-alpha.60"},{"last_affected":"2.0.0-alpha.60"},{"introduced":"2.0.0-alpha.61"},{"last_affected":"2.0.0-alpha.61"},{"introduced":"2.0.0-alpha.62"},{"last_affected":"2.0.0-alpha.62"},{"introduced":"2.0.0-alpha.63"},{"last_affected":"2.0.0-alpha.63"}],"source":"AFFECTED_FIELD"}}],"versions":["2.0.0-alpha.1","2.0.0-alpha.20","2.0.0-alpha.21","2.0.0-alpha.22","2.0.0-alpha.23","2.0.0-alpha.24","2.0.0-alpha.25","2.0.0-alpha.26","2.0.0-alpha.27","2.0.0-alpha.28","2.0.0-alpha.29","2.0.0-alpha.31","2.0.0-alpha.32","2.0.0-alpha.33","2.0.0-alpha.34","2.0.0-alpha.39","2.0.0-alpha.41","2.0.0-alpha.43","2.0.0-alpha.50","2.0.0-alpha.51","2.0.0-alpha.52","2.0.0-alpha.53","2.0.0-alpha.54","2.0.0-alpha.56","2.0.0-alpha.57","2.0.0-alpha.58","2.0.0-alpha.59","2.0.0-alpha.60","2.0.0-alpha.61","2.0.0-alpha.62","2.0.0-alpha.63","v2.0.0-alpha.63","v2.0.0-alpha.62","v2.0.0-alpha.61","v2.0.0-alpha.60","v2.0.0-alpha.59","v2.0.0-alpha.58","v2.0.0-alpha.57","v2.0.0-alpha.56","v2.0.0-alpha.53","v2.0.0-alpha.52","v2.0.0-alpha.51","v2.0.0-alpha.50","v2.0.0-alpha.43","v2.0.0-alpha.41","v2.0.0-alpha.39","v2.0.0-alpha.34","v2.0.0-alpha.33","v2.0.0-alpha.32","v2.0.0-alpha.31","v2.0.0-alpha.29","v2.0.0-alpha.28","v2.0.0-alpha.22","v2.0.0-alpha.20","v2.0.0-alpha.19"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-7223.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"}]}