SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-t…

SillyTavern, a locally installed UI for interacting with AI models, contains a server-side request forgery (SSRF) vulnerability in versions prior to 1.18.0. The vulnerability exists in the /api/search/searxng endpoint which accepts attacker-controlled baseUrl parameters. An authenticated low-privilege user can exploit this to point the baseUrl at internal or loopback HTTP services and receive response data. This allows unauthorized access to internal services that should not be accessible. The vulnerability has been fixed in version 1.18.0.