Langfuse Webhook promptRouter.ts promptChangeEventSourcing server-side request forgery_CVE-2025-9799

2.3 / 10

LOW

CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A security flaw has been discovered in Langfuse up to 3.88.0. Affected by this vulnerability is the function promptChangeEventSourcing of the file web/src/features/prompts/server/routers/promptRouter.ts of the component Webhook Handler. Performing manipulation results in server-side request forgery. The attack may be initiated remotely. A high degree of complexity is needed for the attack. The exploitation appears to be difficult. The exploit has been released to the public and may be exploited.

Basic Information

ID CVE-2025-9799

Source VulDB

Published Sep 1, 2025 at 22:02

Affected Product

Vendor n/a

Product Langfuse

Version 3.0

Affected Versions n/a Langfuse 3.0
n/a Langfuse 3.1
n/a Langfuse 3.2
n/a Langfuse 3.3
n/a Langfuse 3.4
n/a Langfuse 3.5
n/a Langfuse 3.6
n/a Langfuse 3.7
n/a Langfuse 3.8
n/a Langfuse 3.9
n/a Langfuse 3.10
n/a Langfuse 3.11
n/a Langfuse 3.12
n/a Langfuse 3.13
n/a Langfuse 3.14
n/a Langfuse 3.15
n/a Langfuse 3.16
n/a Langfuse 3.17
n/a Langfuse 3.18
n/a Langfuse 3.19
n/a Langfuse 3.20
n/a Langfuse 3.21
n/a Langfuse 3.22
n/a Langfuse 3.23
n/a Langfuse 3.24
n/a Langfuse 3.25
n/a Langfuse 3.26
n/a Langfuse 3.27
n/a Langfuse 3.28
n/a Langfuse 3.29
n/a Langfuse 3.30
n/a Langfuse 3.31
n/a Langfuse 3.32
n/a Langfuse 3.33
n/a Langfuse 3.34
n/a Langfuse 3.35
n/a Langfuse 3.36
n/a Langfuse 3.37
n/a Langfuse 3.38
n/a Langfuse 3.39
n/a Langfuse 3.40
n/a Langfuse 3.41
n/a Langfuse 3.42
n/a Langfuse 3.43
n/a Langfuse 3.44
n/a Langfuse 3.45
n/a Langfuse 3.46
n/a Langfuse 3.47
n/a Langfuse 3.48
n/a Langfuse 3.49
n/a Langfuse 3.50
n/a Langfuse 3.51
n/a Langfuse 3.52
n/a Langfuse 3.53
n/a Langfuse 3.54
n/a Langfuse 3.55
n/a Langfuse 3.56
n/a Langfuse 3.57
n/a Langfuse 3.58
n/a Langfuse 3.59
n/a Langfuse 3.60
n/a Langfuse 3.61
n/a Langfuse 3.62
n/a Langfuse 3.63
n/a Langfuse 3.64
n/a Langfuse 3.65
n/a Langfuse 3.66
n/a Langfuse 3.67
n/a Langfuse 3.68
n/a Langfuse 3.69
n/a Langfuse 3.70
n/a Langfuse 3.71
n/a Langfuse 3.72
n/a Langfuse 3.73
n/a Langfuse 3.74
n/a Langfuse 3.75
n/a Langfuse 3.76
n/a Langfuse 3.77
n/a Langfuse 3.78
n/a Langfuse 3.79
n/a Langfuse 3.80
n/a Langfuse 3.81
n/a Langfuse 3.82
n/a Langfuse 3.83
n/a Langfuse 3.84
n/a Langfuse 3.85
n/a Langfuse 3.86
n/a Langfuse 3.87
n/a Langfuse 3.88.0

CWE Classification

CWE-918

References

{
    "lastseen": "",
    "description": "A security flaw has been discovered in Langfuse up to 3.88.0. Affected by this vulnerability is the function promptChangeEventSourcing of the file web/src/features/prompts/server/routers/promptRouter.ts of the component Webhook Handler. Performing manipulation results in server-side request forgery. The attack may be initiated remotely. A high degree of complexity is needed for the attack. The exploitation appears to be difficult. The exploit has been released to the public and may be exploited.",
    "published": "2025-09-01T22:02:09.356Z",
    "modified": "2025-09-01T22:02:09.356Z",
    "type": "cve",
    "title": "Langfuse Webhook promptRouter.ts promptChangeEventSourcing server-side request forgery",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.322114\nhttps://vuldb.com/?ctiid.322114\nhttps://vuldb.com/?submit.641128\nhttps://github.com/langfuse/langfuse/issues/8522\nhttps://github.com/langfuse/langfuse/issues/8522#issue-3320549867",
    "id": "CVE-2025-9799",
    "bulletinFamily": "",
    "cwe": [
        "CWE-918"
    ],
    "cvelist": null,
    "sourceData": "n/a Langfuse 3.0\nn/a Langfuse 3.1\nn/a Langfuse 3.2\nn/a Langfuse 3.3\nn/a Langfuse 3.4\nn/a Langfuse 3.5\nn/a Langfuse 3.6\nn/a Langfuse 3.7\nn/a Langfuse 3.8\nn/a Langfuse 3.9\nn/a Langfuse 3.10\nn/a Langfuse 3.11\nn/a Langfuse 3.12\nn/a Langfuse 3.13\nn/a Langfuse 3.14\nn/a Langfuse 3.15\nn/a Langfuse 3.16\nn/a Langfuse 3.17\nn/a Langfuse 3.18\nn/a Langfuse 3.19\nn/a Langfuse 3.20\nn/a Langfuse 3.21\nn/a Langfuse 3.22\nn/a Langfuse 3.23\nn/a Langfuse 3.24\nn/a Langfuse 3.25\nn/a Langfuse 3.26\nn/a Langfuse 3.27\nn/a Langfuse 3.28\nn/a Langfuse 3.29\nn/a Langfuse 3.30\nn/a Langfuse 3.31\nn/a Langfuse 3.32\nn/a Langfuse 3.33\nn/a Langfuse 3.34\nn/a Langfuse 3.35\nn/a Langfuse 3.36\nn/a Langfuse 3.37\nn/a Langfuse 3.38\nn/a Langfuse 3.39\nn/a Langfuse 3.40\nn/a Langfuse 3.41\nn/a Langfuse 3.42\nn/a Langfuse 3.43\nn/a Langfuse 3.44\nn/a Langfuse 3.45\nn/a Langfuse 3.46\nn/a Langfuse 3.47\nn/a Langfuse 3.48\nn/a Langfuse 3.49\nn/a Langfuse 3.50\nn/a Langfuse 3.51\nn/a Langfuse 3.52\nn/a Langfuse 3.53\nn/a Langfuse 3.54\nn/a Langfuse 3.55\nn/a Langfuse 3.56\nn/a Langfuse 3.57\nn/a Langfuse 3.58\nn/a Langfuse 3.59\nn/a Langfuse 3.60\nn/a Langfuse 3.61\nn/a Langfuse 3.62\nn/a Langfuse 3.63\nn/a Langfuse 3.64\nn/a Langfuse 3.65\nn/a Langfuse 3.66\nn/a Langfuse 3.67\nn/a Langfuse 3.68\nn/a Langfuse 3.69\nn/a Langfuse 3.70\nn/a Langfuse 3.71\nn/a Langfuse 3.72\nn/a Langfuse 3.73\nn/a Langfuse 3.74\nn/a Langfuse 3.75\nn/a Langfuse 3.76\nn/a Langfuse 3.77\nn/a Langfuse 3.78\nn/a Langfuse 3.79\nn/a Langfuse 3.80\nn/a Langfuse 3.81\nn/a Langfuse 3.82\nn/a Langfuse 3.83\nn/a Langfuse 3.84\nn/a Langfuse 3.85\nn/a Langfuse 3.86\nn/a Langfuse 3.87\nn/a Langfuse 3.88.0",
    "sourceHref": "",
    "cvss": {
        "score": 2.3,
        "severity": "LOW",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Langfuse",
    "version": "3.0",
    "vendor": "n/a",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}