A vulnerability was detected in JoeCastrom mcp-chat-studio up to 1.5.0. Affected by this issue is some unknown functionality of the file server/routes/llm.js of…

A server-side request forgery (SSRF) vulnerability has been identified in JoeCastrom mcp-chat-studio versions up to 1.5.0. The vulnerability exists in the LLM Models API component, specifically in the server/routes/llm.js file. Attackers can exploit this by manipulating the req.query.base_url argument to perform SSRF attacks. The vulnerability can be exploited remotely and a public exploit is now available. The project maintainers were notified through an issue report but have not responded to the disclosure.