repository icon
mintplex-labs / anything-llm Project repository

The all-in-one Desktop & Docker AI application with built-in RAG, AI agents, and more.

Submit a report

FIRST INTERACTION

WITHIN3 DAYS

REVIEW

WITHIN19 DAYS

FIX

WITHIN438 DAYS

Changing the "ID" parameter in the user cookie allows loading the profile pictur...
cyber-wo0dy
Medium
CVE-2024-13060
Path traversal, lead to arbitrary file write, lead to remote code execution
oicu0619
High
$450CVE-2024-13059
Redos (Regular Expression Denial of Service)
oicu0619
informative
Medium
Sensitive Data Exposure via API
1d8
informative
High
Stored Cross-Site Scripting (XSS) Within Profile Images
1d8
duplicate
High
Server-Side Request Forgery (SSRF) Via Workspace Document Upload
1d8
duplicate
Medium
Low privilege user can modify model settings, leading to LLM API key leakage, an...
oicu0619
High
$450CVE-2024-10109
DoS attack in Upload document
vishnuraj-r
informative
Medium
Data leak through CORS misconfiguration
h2oa
not applicable
CSRF lead to take over admin account
h2oa
not applicable
Directly take user json to prisma library where clause, aka prisma injection
oicu0619
Medium
$120CVE-2024-8251
unauth DOS on embed chat
oicu0619
High
$450CVE-2024-8249
Path traversal lead to arbitrary file write/read in storage dir, further lead to...
oicu0619
duplicate
High
CVE-2024-8248
Origin mirroring on API-endpoints allow CSRF
patrik-ha
informative
High
Collector endpoint for parsing Office files vulnerable to ZIP-bomb
patrik-ha
informative
Medium
anything LLM desktop version on windows open server port with no authentication...
oicu0619
Critical
$900CVE-2024-8196
SSRF in Document upload allows Access to Cloud Instance Metadata
karthik983
duplicate
Medium
Improper Session Management: JWT Token Not Invalidated After Logout
karthik983
informative
High
Access to internal network assets via SSRF through DNS resolving
winters0x64
duplicate
High
SSRF in /upload-link endpoint allows reading of Internal network assets
winters0x64
informative
Medium
Improper Storage of Sensitive information in Bearer Token
karthik983
Medium
$75CVE-2024-7783
Cross-Site Scripting Via Workspace Image Upload
1d8
duplicate
High
Reflected XSS Vulnerability via SVG File Upload in AnythingLLM
devsecops-47
duplicate
Medium
Denial of service by uploading audio file with low sample rate
patrik-ha
Medium
$75CVE-2024-7771
User with manager role can delete other users profile pictures
noizybit
informative
Medium
Unauthorized user can get full access to "anythingllm.db" system database, read...
noizybit
High
$630CVE-2024-10513
SSRF bypass using redirect
lager1
informative
High
Exposure sensitive info via specific API
rpie9
High
$450CVE-2024-6842
Pixel Flood Attack Vulnerability in Image Upload Feature
saimanikanta1992
informative
Medium
Site wide path traversal bypass for the normalizePath() on windows installations
saymenn
informative
High
SSRF protection bypass
saymenn
self closed
Denial of Service in users Home Page including admin's, and in Workspaces settin...
mnqazi
informative
Medium
Open Redirect
aaron911
informative
High
Denial of Service in User Management Prevents Admin from Editing, Suspending, or...
mnqazi
High
$450CVE-2024-5216
Hardcoded Plaintext Passwords in JWT Tokens in Single user mode
mnqazi
informative
High
Wrong Icon causes UI rendering failure
aaron911
informative
Medium
CVE-2024-5214
Multiple Stored XSS via Picture Upload's leading to Account takeover in mintplex...
alfinj0se
duplicate
High
Security Headers in Express.js Application
abdolzx
informative
Medium
Password hash of user returned in responses
acciobugs
Medium
$75CVE-2024-5213
ssrf bug to access internal network
d47secc
informative
High
Path traversal to Arbitrary file Read/Delete/Overwrite, DoS attack and admin acc...
noizybit
Critical
$1260CVE-2024-5211
Response tampering lead to delele/update thread of another user
d47secc
not applicable
(Still exploitable) Shutting down the server by sending invalid upload request
sev-hack
Medium
$75CVE-2024-5208
Potential clickjacking through iframes
patrik-ha
informative
Medium
Frameable response (potential Clickjacking)
mnqazi
informative
Medium
CVE-2024-4206
ssrf bug to scan internet network
happypwn1337
duplicate
Critical
Upload HTML file lead to Stored XSS
h2oa
duplicate
High
ssrf bug to access internal network
t1m0n0
informative
Critical
SSRF leads to cloud data leakage in azure
c0ldb00t3r
informative
High
Admin account takeover
noizybit
informative
High
User with manager role is able to create new Administrator accounts
noizybit
High
$450CVE-2024-4287
User modification allows for data modification
lager1
Medium
$90CVE-2024-4286
Denial of service by assigning specific user id
lager1
Medium
$90CVE-2024-4284
HTML injection in chat enables users to unknowingly upload files to the attacker...
mnqazi
informative
Medium
Unrestricted Profile Picture Upload leads to stored XSS by uploading malicious S...
mnqazi
informative
Critical
Stored XSS in Account avatar upload
nduy2110
duplicate
Critical
Default / manager user can escalate their privileges to Administrator
noizybit
High
$450CVE-2024-3150
Prisma Filter Injection allow user enumeration
nduy2110
informative
High
SSRF bug to access internal network
nduy2110
duplicate
High
SSRF in the upload link feature leads to accessing internal Collector API and es...
noizybit
Critical
$900CVE-2024-3149
Observable Timing Discrepancy
dievus
informative
Medium
Server-Side Request Forgery
dievus
duplicate
High
Denial of service using the `/api/migrate` endpoint
lager1
informative
Medium
JSON Web Token Tampering Denial of Service
dievus
duplicate
High
Improper input validation in Collector API leads to unauthenticated arbitary fil...
noizybit
informative
Critical
Stored XSS to admin account takeover
noizybit
High
$450CVE-2024-3110
Improper authorization check leads to deleting and erasing all data in VectorDB
noizybit
Critical
$900CVE-2024-3033
Logo upload function allows uploading arbitrary files
kr3ww
informative
High
username enumeration vulnerability
james-niki
informative
Medium
A user can crash the entire app causing a DoS by only sending a message in chat...
noizybit
self closed
'collector/utils/url/index.js' sanitization on IP in 'isInvalidIp' can by bypass...
retr0reg
informative
Medium
Privilege escalation from default to role to admin and then LFI and more
ozelis
High
$450CVE-2024-3152
Full read SSRF via within docker port scan using URL redirection.
ph4nt0m-py
duplicate
Critical
Cross site scripting using the fetch website feature
lager1
Low
$15CVE-2024-3166
Blind XSS bug in Chat
tuna18dv
informative
Medium
Race Condition in /api/workspace/:slug/stream-chat
ch1nhpd
informative
Medium
Insufficient session expiration
h2oa
duplicate
Medium
Default role users can view the settings interface of admin/manager role users
h2oa
duplicate
Medium
SSRF bypass using redirect
lager1
duplicate
Medium
SSRF access to internal network assets
bl0ckbeard
duplicate
High
DOS attack in Just me mode
trongphuc12
High
$450CVE-2024-3569
No rate limit at login form
h2oa
duplicate
High
No rate limit on login form
kirtiso
informative
Medium
Prompt Injection Leads to Information Disclosure in Anything LLM Prompt
lohigowdain
not applicable
SSRF bypass on `POST /api/workspace/:slug/upload-link`
lager1
duplicate
High
Injection to query engine using username
lager1
informative
High
The manager role can update the value of an arbitrary label in SystemSettings. 
trongphuc12
duplicate
Critical
Remote code execution using environment variables
lager1
Critical
$1620CVE-2024-3104
JSON Injection in login
trongphuc12
Medium
$75CVE-2024-3102
HTML Injection + Server-Side Template Injection (SSTI)
lohigowdain
duplicate
Medium
Path traversal via logo_filename leads to delete and read any files on the syste...
nhienit2010
duplicate
Critical
Race Condition when submit question for AI
oiiwroo
informative
Medium
Allowing SVG file upload in chatbot logo and user avatar upload function leads t...
tuna18dv
informative
High
Race Condition when accept invite link
oiiwroo
duplicate
Medium
SSRF in /api/workspace/:slug/upload-link function via redirect
nhienit2010
duplicate
Critical
Application doesn't revoke api-key after enable multi-user mode
trongphuc12
duplicate
Critical
Escalation of privilege vulnerability allows access to administrative functions...
tuna18dv
informative
High
EXIF metadata not stripped from JPG team logos
oiiwroo
informative
Medium
CSV injection
oiiwroo
duplicate
Medium
Priv escalation - an Admin user can send an API request to suspend all other Adm...
bl0ckbeard
self closed
Race Condition in /api/invite/
ch1nhpd
informative
Medium
SSRF in /api/workspace/:slug/upload-link function bypass CVE-2024-0759
nhienit2010
duplicate
Critical
Dos for all server by edit JWT in Authorization header
oiiwroo
duplicate
High
HTML injection [mintplex-labs/anything-llm]
kirtiso
duplicate
High
SSTI in chat in mintplex-labs/anything-llm
kirtiso
informative
Critical
SSRF check bypassed by Unicoding the IP address
hiu240900
duplicate
Critical
Shutting down the server by sending invalid upload request
hiu240900
Medium
$75CVE-2024-3153
AnythingLLM still has SSRF vulnerability
wh0amitz
High
$450CVE-2024-4084
Deactivate Multi-User Mode and Delete All Users
mvlttt
Critical
$900CVE-2024-3029
Failure to Invalidate Session On Password Reset and/or Change of invited user m...
kirtiso
informative
High
User can read and delete arbitrary files
mvlttt
High
$450CVE-2024-3028
XSS via javascript scheme at "Custom Footer Icons" function
hiu240900
informative
Medium
Users can escalate privileges by deactivating 'Multi-User Mode'.
mvlttt
Medium
$75CVE-2024-3101
Denial of Service (DoS). Due to Unrestricted Workspace Name Length
dailybee13
informative
Medium
Server Side Request forgery (SSRF) in upload-link endpoint
m0kr4n3
informative
Medium
Stored XSS on chat due to lack of output encoding
ph4nt0m-py
informative
Medium
Server Side Request Forgery leads to extract AWS Metadata (No proper fix impleme...
ph4nt0m-py
duplicate
Critical
csv/formula injection
ranjit-git
informative
Medium
removed user can see embed chat details after removed from team.
ranjit-git
not applicable
removed user still can perform all operation with api key
ranjit-git
informative
Critical
privilege escalation bug to add feedback to any chat
ranjit-git
informative
Medium
non-admin user can delete workspace
ranjit-git
informative
High
Mass assignment that leads to privilege escalation attack
tauron3
High
$450CVE-2024-3283
Arbitrary file deletion / reading via path traversal in logo photo upload and do...
williwollo
Critical
$900CVE-2024-3025
Race Condition in accepting user invites
rook1337
Medium
$75CVE-2024-2913
ssrf fix bypass
ranjit-git
informative
Critical
Anonymous access to import endpoint leads to anythingllm.db deletion/spoofing
dastaj
Critical
$1500CVE-2024-3279
Path traversal leads to anythingllm.db deletion
dastaj
High
$750CVE-2024-0549
Arbitrary file reading via path traversal in profile photo loading feature
williwollo
Critical
$1500CVE-2024-0550
Improper input validation leads to arbitrary folder deletion (recursively)
raltheo
High
$1500CVE-2024-0763
Improper input validation leads to arbitrary file deletion
raltheo
informative
High
Unauthorized access to anythingllm.db database exports
dastaj
High
$750CVE-2024-0551
Privilege Escalation and Unauthorized User Data Manipulation
williwollo
informative
High
upload file to server without authentication
ranjit-git
informative
High
ssrf bug to access internal network
ranjit-git
High
$1500CVE-2024-0759
Improper privilege management between admin and manager roles
dastaj
High
$750CVE-2024-0439
SSRF - reading local files, env secrets, AWS metadata endpoint
dastaj
Critical
$1500CVE-2024-0440
Insecure input & output handling - XSS leading to admin account takeover
dastaj
informative
High
xss bug in chat
ranjit-git
High
$750CVE-2024-0435
session is active even after user has been logged out of his account
ranjit-git
informative
High
privilege escalation bug to delete the uploaded document
ranjit-git
High
$900CVE-2024-0798
timing attack to guess the authtoken
ranjit-git
High
$750CVE-2024-0436
privilege escalation bug to change workspace name
ranjit-git
informative
High
Mass assignment in account creation from invitation
dastaj
Critical
$1500CVE-2024-0404
Unrestricted file upload while changing logo leads to XSS
rook1337
informative
Medium
privilege escalation bug to add higher level user
ranjit-git
informative
High
default/manager user can get all system database information like username,pas...
ranjit-git
Critical
$1500CVE-2024-0765
manager user become admin user
ranjit-git
informative
High
Command Injection (Input Validation and Representation, Structural)
azizsec
not applicable
ssrf bug to steal aws metadata
ranjit-git
Critical
$1500CVE-2024-0455
Steal admin authtoken with svg xss
ranjit-git
informative
High
XSS - Stored / Admin account takeover
raltheo
None
CVE-2024-3570
Improper acces control / admin account takeover
raltheo
High
$750CVE-2024-0795
Admin account TakeOver
raltheo
High
CVE-2023-5833
Improper input validation leads to arbitrary file deletion
charliebailly
Critical
CVE-2023-5832
No permission check /api/system/update-env lead to Account takeover and SQL inj...
ngbthg101
informative
Critical
SQL injection and Authentication bypass
vvxhid
High
CVE-2023-4898
SQL injection in slug parameter
vvxhid
High
CVE-2023-4899
Relative path traversal
vvxhid
High
CVE-2023-4897