pkg:npm/@lobehub/lobehub
2 total CVEsMEDIUM2
✅ Check your installed version
All known vulnerabilities
MEDIUM6.2CVE-2026-42045LobeHub has a Cross-Site Scripting issue that escalates to Remote Code Execution from 0, <= 2.1.26
MEDIUM5.0CVE-2026-39411LobeHub: Unauthenticated authentication bypass on `webapi` routes via forgeable `X-lobe-chat-auth` header from 0, < 2.1.48