CVE-2026-10044
ai-goofish-monitor Unauthenticated Arbitrary File Read via GET /api/prompts/
CVSS Score
7.5
EPSS Score
0.0%
EPSS Percentile
16th
Usagi-org ai-goofish-monitor contains an unauthenticated arbitrary file read vulnerability in the GET /api/prompts/{filename} endpoint on Windows deployments that allows unauthenticated remote attackers to read arbitrary files by supplying absolute Windows paths or backslash-based traversal sequences. Attackers can bypass the incomplete path traversal guard, which only blocks forward slashes and '..', by providing absolute paths such as Windows system file locations, causing os.path.join to discard the intended prompts directory prefix and expose files accessible to the application process.
| CWE | CWE-36 |
| Vendor | usagi-org |
| Product | ai-goofish-monitor |
| Published | May 28, 2026 |
| Last Updated | May 30, 2026 |
Stay Ahead of the Next One
Get instant alerts for usagi-org ai-goofish-monitor
Be the first to know when new high vulnerabilities affecting usagi-org ai-goofish-monitor are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected Versions
Usagi-org / ai-goofish-monitor
0 < f85d140b6b45029d9a0925feb96dad733b41396d
References
github.com: https://github.com/Usagi-org/ai-goofish-monitor/issues/488 github.com: https://github.com/Usagi-org/ai-goofish-monitor/pull/489 vulncheck.com: https://www.vulncheck.com/advisories/ai-goofish-monitor-unauthenticated-arbitrary-file-read-via-get-api-prompts github.com: https://github.com/Usagi-org/ai-goofish-monitor/commit/f85d140b6b45029d9a0925feb96dad733b41396d
Credits
YU SUN