LOW
khoj-ai
CVE published 2026-06-28
CVE-2026-13508
CVE-2026-13508 is a low-severity vulnerability in khoj-ai khoj up to 2.0.0-beta.28. The flaw is located in the Conversation Sharing Handler, specifically in the src/khoj/routers/api_chat.py file. An attacker can manipulate the conversation.agent argument to cause incorrect authorization. Remote exploitation of this vulnerability is possible. The exploit has been published and may be used. A pull request t [truncated]