GCVE - cpe:2.3:a:algonet:orcastatllm_researcher:1:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:algonet:orcastatllm_researcher:1:*:*:*:*:*:*:*

part: a version: 1 update: *

Vendor	Algonet (`157b5ca8-1513-5e1d-873f-bb54d02b57e8`)
Product	Orcastatllm Researcher (`fdc8a782-4c66-56bb-b8ae-63154ef255e4`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-24903`	vulnerable	2026-06-08 07:53:18.659831	OrcaStatLLM Researcher Stored Cross-Site Scripting (XSS) via Log Message Injection in Session Page OrcaStatLLM Researcher is an LLM Based Research Paper Generator. A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the Log Message in the Session Page in OrcaStatLLM-Researcher that allows attackers to inject and execute arbitrary JavaScript code in victims' browsers through malicious research topic inputs. Published: 2026-02-06T17:46:20.755Z Updated: 2026-02-06T18:05:02.550Z Open on db.gcve.eu Reference links https://github.com/AlgoNetLab/OrcaStatLLM-Researcher/security/advisories/GHSA-47wv-g894-82m4	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.