📄 Description (English)
A weakness has been identified in ChatGPTNextWeb NextChat up to 2.16.1. This affects the function storeUrl of the file app/api/artifacts/route.ts of the component Artifacts Endpoint. This manipulation of the argument ID causes server-side request forgery. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.
🤖 AI Executive Summary
CVE-2026-7178 is a Server-Side Request Forgery (SSRF) vulnerability in ChatGPTNextWeb NextChat versions up to 2.16.1, affecting the Artifacts Endpoint. The vulnerability allows remote attackers to manipulate the ID parameter in the storeUrl function, enabling unauthorized server requests. With a CVSS score of 7.3 and publicly available exploits, this poses an immediate threat to organizations using affected versions, particularly those leveraging NextChat for internal AI applications or integrations.
📄 Description (Arabic)
🤖 AI Intelligence Analysis Analyzed: May 6, 2026 08:18
🇸🇦 Saudi Arabia Impact Assessment
Saudi organizations using NextChat for AI-powered applications face significant risk, particularly in: (1) Banking sector (SAMA-regulated institutions) using NextChat for customer service or internal analytics; (2) Government agencies (NCA oversight) deploying NextChat for document processing or citizen services; (3) Healthcare providers using NextChat for medical record analysis or patient communication; (4) Telecommunications companies (STC, Mobily) leveraging NextChat for customer support automation; (5) Energy sector (ARAMCO, SEC) using NextChat for operational intelligence. The SSRF vulnerability could enable attackers to access internal network resources, bypass firewalls, and potentially compromise sensitive data or critical infrastructure.
🏢 Affected Saudi Sectors
Banking and Financial Services
Government and Public Administration
Healthcare and Medical Services
Telecommunications
Energy and Utilities
Technology and Software Development
E-commerce and Retail
🎯 MITRE ATT&CK Techniques
⚖️ Saudi Risk Score (AI)
8.2
/ 10.0
🔧 Remediation Steps (English)
IMMEDIATE ACTIONS:
1. Inventory all NextChat deployments across your organization and identify instances running versions 2.16.0 or 2.16.1
2. Isolate affected NextChat instances from production environments or restrict network access to trusted sources only
3. Implement network segmentation to prevent SSRF attacks from reaching internal resources
4. Monitor all outbound requests from NextChat instances for suspicious activity
PATCHING GUIDANCE:
1. Check the official NextChat GitHub repository for security patches or version 2.16.2+ releases
2. If patches are available, schedule immediate deployment in a controlled manner
3. If no patch is available, consider upgrading to the latest stable version when released
COMPENSATING CONTROLS (if patching is delayed):
1. Implement Web Application Firewall (WAF) rules to detect and block SSRF attempts targeting internal IP ranges (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 127.0.0.1)
2. Restrict outbound connections from NextChat to only necessary external services using firewall rules
3. Disable or restrict the Artifacts Endpoint functionality if not critical to operations
4. Implement strict input validation on the ID parameter to reject suspicious values
DETECTION RULES:
1. Monitor for HTTP requests to internal IP addresses originating from NextChat processes
2. Alert on unusual outbound connections from the application to non-whitelisted domains
3. Log and review all requests to /api/artifacts/route.ts endpoint with suspicious ID parameters
4. Implement IDS/IPS signatures to detect SSRF payloads (file://, gopher://, dict://, etc.)
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:
1. قم بحصر جميع نشرات NextChat عبر مؤسستك وحدد الحالات التي تعمل بالإصدارات 2.16.0 أو 2.16.1
2. عزل حالات NextChat المتأثرة عن بيئات الإنتاج أو تقييد الوصول إلى الشبكة للمصادر الموثوقة فقط
3. تنفيذ تقسيم الشبكة لمنع هجمات SSRF من الوصول إلى الموارد الداخلية
4. مراقبة جميع الطلبات الصادرة من حالات NextChat للنشاط المريب
إرشادات التصحيح:
1. تحقق من مستودع NextChat الرسمي على GitHub للحصول على تصحيحات أمان أو إصدارات 2.16.2+
2. إذا كانت التصحيحات متاحة، قم بجدولة النشر الفوري بطريقة منضبطة
3. إذا لم يكن هناك تصحيح متاح، فكر في الترقية إلى أحدث إصدار مستقر عند إصداره
الضوابط البديلة (إذا تأخر التصحيح):
1. تنفيذ قواعد جدار حماية تطبيقات الويب (WAF) للكشف عن محاولات SSRF وحجبها التي تستهدف نطاقات IP الداخلية
2. تقييد الاتصالات الصادرة من NextChat إلى الخدمات الخارجية الضرورية فقط باستخدام قواعد جدار الحماية
3. تعطيل أو تقييد وظيفة نقطة نهاية الآثار إذا لم تكن حرجة للعمليات
4. تنفيذ التحقق الصارم من المدخلات على معامل المعرف لرفض القيم المريبة
قواعد الكشف:
1. مراقبة طلبات HTTP إلى عناوين IP الداخلية الناشئة من عمليات NextChat
2. التنبيه على الاتصالات الصادرة غير العادية من التطبيق إلى النطاقات غير المدرجة في القائمة البيضاء
3. تسجيل ومراجعة جميع الطلبات إلى نقطة نهاية /api/artifacts/route.ts مع معاملات معرف مريبة
4. تنفيذ توقيعات IDS/IPS للكشف عن حمولات SSRF
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
ECC 2024 A.14.2.1 - Information security requirements for supplier relationships
ECC 2024 A.14.2.5 - Addressing information security in supplier agreements
ECC 2024 A.5.23 - Information security for use of cloud services
ECC 2024 A.8.22 - Secure development and deployment practices
🔵 SAMA CSF
SAMA CSF 1.1 - Governance and Risk Management
SAMA CSF 2.1 - Asset Management and Protection
SAMA CSF 3.1 - Access Control and Authentication
SAMA CSF 4.1 - Detection and Response
🟡 ISO 27001:2022
ISO 27001:2022 A.5.23 - Information security for use of cloud services
ISO 27001:2022 A.8.22 - Secure development and deployment practices
ISO 27001:2022 A.8.24 - Protection of development, test and acceptance environments
ISO 27001:2022 A.8.28 - Secure coding
🟣 PCI DSS v4.0.1
PCI DSS 6.2 - Ensure all system components and software are protected from known vulnerabilities
PCI DSS 6.5.10 - Broken authentication and session management
🔗 References & Sources 6
🔗
https://gist.github.com/YLChen-007/43252d45d75e8bdd2d45136fd6ffe8a5
cna@vuldb.com
Exploit
Third Party Advisory
🔗
https://github.com/ChatGPTNextWeb/NextChat/
cna@vuldb.com
Product
🔗
https://github.com/ChatGPTNextWeb/NextChat/issues/6741
cna@vuldb.com
Issue Tracking
🔗
https://vuldb.com/submit/797646
cna@vuldb.com
Exploit
Third Party Advisory
VDB Entry
🔗
https://vuldb.com/vuln/359780
cna@vuldb.com
Third Party Advisory
VDB Entry
🔗
https://vuldb.com/vuln/359780/cti
cna@vuldb.com
Permissions Required
📦 Affected Products / CPE 2 entries
nextchat:nextchat:2.16.0
nextchat:nextchat:2.16.1