CVE-2026-46372 Scanner

SillyTavern is a popular software application used in various settings for managing and organizing events or social gatherings. It is primarily implemented by event coordinators, party planners, or venue managers seeking an efficient tool for handling guest lists, schedules, and other logistics. This software helps streamline communication and organization, which enhances the overall experience for both organizers and attendees. SillyTavern provides a user-friendly interface, enabling users to quickly set up and modify events as needed. The software is often deployed over networks to allow seamless collaboration among multiple users. SillyTavern also offers various integrations to enhance its functionality, making it a versatile tool for managing events.

The vulnerability detected in SillyTavern is a Server-Side-Request-Forgery (SSRF) flaw. SSRF vulnerabilities occur when an attacker can trick a server into sending a crafted request to another server, including internal or protected services. In this case, the SSRF vulnerability affects SillyTavern versions up to and including 1.17.0, due to the exposure of the /api/search/searxng endpoint. This endpoint improperly handles attacker-controlled baseUrl parameters, which are then used to build outbound server-side requests. Authenticated low-privileged users can exploit this to direct requests towards internal services and access sensitive data.

Technically, this vulnerability arises from the lack of adequate validation on the baseUrl parameter within the /api/search/searxng endpoint. By manipulating this parameter, attackers can craft requests targeting internal IP addresses or cloud metadata endpoints. This unintended behavior allows attackers to bypass typical access controls and extract potentially sensitive information. Additional security flaws may be present if hosting over a network without proper configurations. When exploited, the vulnerability grants unauthorized access to internal network resources or secured environments, highlighting a serious security concern.

The possible effects of exploiting the SSRF vulnerability in SillyTavern can be severe. An attacker can gain unauthorized access to internal systems and data, potentially exposing sensitive information such as private IP addresses, configuration files, or database contents. This could lead to further exploitation, including lateral movement within a network or service disruption. Additionally, the disclosure of cloud metadata endpoints can facilitate subsequent attacks, such as privilege escalation or data exfiltration. Organizations utilizing vulnerable versions of SillyTavern are at a heightened risk of compromise and should urgently address the issue.

REFERENCES

• https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-qg89-qwwh-5f3j
• https://nvd.nist.gov/vuln/detail/CVE-2026-46372