Advisories for Pypi/Khoj package

2026

Khoj has an IDOR in Notion OAuth Flow that Enables Index Poisoning

An IDOR in the Notion OAuth callback allows an attacker to hijack any user's Notion integration by manipulating the state parameter. The callback endpoint accepts any user UUID without verifying the OAuth flow was initiated by that user, allowing attackers to replace victims' Notion configurations with their own, resulting in data poisoning and unauthorized access to the victim's Khoj search index. This attack requires knowing the user's UUID which can …

2024

khoj has an IDOR in subscription management allows unauthorized subscription modifications

An Insecure Direct Object Reference (IDOR) vulnerability in the update_subscription endpoint allows any authenticated user to manipulate other users' Stripe subscriptions by simply modifying the email parameter in the request.

Khoj Vulnerable to Stored Cross-site Scripting In Automate (Preview feature)

The Automation feature allows a user to insert arbitrary HTML inside the task instructions, resulting in a Stored XSS.