Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: Some malicious extension is getting installed automatically after making 10K+ calls to Stable diffusion model through the API. #16500

Open
6 tasks
knowitall12 opened this issue Sep 18, 2024 · 1 comment
Open
6 tasks

[Bug]: Some malicious extension is getting installed automatically after making 10K+ calls to Stable diffusion model through the API. #16500

knowitall12 opened this issue Sep 18, 2024 · 1 comment
Labels
bug-report Report of a bug, yet to be confirmed

Comments

@knowitall12
Copy link

knowitall12 commented Sep 18, 2024
edited
Loading

sd.txt
sd.txt

Checklist

  • The issue exists after disabling all extensions
  • The issue exists on a clean installation of webui
  • The issue is caused by an extension, but I believe it is caused by a bug in the webui
  • The issue exists in the current version of the webui
  • The issue has not been reported before recently
  • The issue has been reported before but has not been fixed yet

What happened?

When we made 10K calls to generate different images we observed that a new extension with URL "http://77.90.22.129:3000/WCZMKQKVIQ/na8672" is getting installed.
SD Extensions

Steps to reproduce the problem

  1. Install Stable Diffusion.
  2. Install following Extensions:
    A. https://github.com/Mikubill/sd-webui-controlnet
    B. https://github.com/AUTOMATIC1111/stable-diffusion-webui-nsfw-censor
    C. https://github.com/w-e-w/sd-webui-nudenet-nsfw-censor
  3. Try making 10K calls to Stable diffusion using the endpoint: sdapi/v1/txt2img

What should have happened?

The malicious extension shouldn't have been installed automatically.

What browsers do you use to access the UI ?

Google Chrome

Sysinfo

sysinfo-2024-09-18-15-03.json

Console logs

Attached in files section.

Additional information

We have deployed it on K8s on a pod using a Dockerfile.
@knowitall12 knowitall12 added the bug-report Report of a bug, yet to be confirmed label Sep 18, 2024
@missionfloyd
Copy link
Collaborator

missionfloyd commented Sep 19, 2024
edited
Loading

What likely happened is that it's exposed to the internet, and someone got in and installed that. It'd probably be best to delete the container and start over.

Before reinstalling, edit the dockerfile and remove --enable-insecure-extension-access and --allow-code if present. Those effectively allow users to run arbitrary code and are disabled by default. Dockerfile maintainers seem to always enable them for some reason.

Set a password by adding --gradio-auth username:password

Extensions can be installed manually from the terminal by going to the extensions directory and running git clone EXTENSION_URL

cd ~/stable-diffusion-webui/extensions
git clone https://github.com/Mikubill/sd-webui-controlnet

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug-report Report of a bug, yet to be confirmed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@missionfloyd @knowitall12