| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-2913 | Race Condition Vulnerability in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | - | - | 2024-05-06 23:42:11 | Deep Dive |
| CVE-2024-3029 | Improper Input Validation in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 超危 | - | 2024-04-16 00:00:15 | Deep Dive |
| CVE-2024-3028 | Improper Input Validation in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 高危 | - | 2024-04-16 00:00:14 | Deep Dive |
| CVE-2024-0404 | Mass Assignment Vulnerability in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 超危 | - | 2024-04-16 00:00:14 | Deep Dive |
| CVE-2024-0549 | Relative Path Traversal in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 高危 | - | 2024-04-16 00:00:14 | Deep Dive |
| CVE-2024-3570 | Stored XSS leading to Admin Account Takeover in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | - | - | 2024-04-10 17:08:15 | Deep Dive |
| CVE-2024-3101 | Privilege Escalation via Improper Input Validation in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | - | - | 2024-04-10 17:08:08 | Deep Dive |
| CVE-2024-3283 | Privilege Escalation via Mass Assignment in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | - | - | 2024-04-10 17:08:00 | Deep Dive |
| CVE-2024-3569 | Denial of Service (DoS) Vulnerability in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | - | - | 2024-04-10 17:07:57 | Deep Dive |
| CVE-2024-3025 | Path Traversal in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | - | - | 2024-04-10 17:07:53 | Deep Dive |
| CVE-2024-0765 | Default user role exporting save state of instance | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-03-03 14:13:41 | Deep Dive |
| CVE-2024-0795 | Create user API role not enforced | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-03-02 21:16:46 | Deep Dive |
| CVE-2024-0550 | Privileged User using traversal to read system files | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-28 04:52:22 | Deep Dive |
| CVE-2024-0763 | Improper validation of document removal parameter | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-27 21:14:57 | Deep Dive |
| CVE-2024-0551 | Download and export of file via default user role | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-27 14:07:29 | Deep Dive |
| CVE-2024-0759 | Collection of internally resolving IPs | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-27 05:12:38 | Deep Dive |
| CVE-2024-0439 | User can manually send request at manager permission to modify system configurations | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-25 19:48:57 | Deep Dive |
| CVE-2024-0440 | SSRF - file:// unsanitized access to underlying host files | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-25 19:00:43 | Deep Dive |
| CVE-2024-0435 | User can submit message to self-XSS | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-25 17:04:13 | Deep Dive |
| CVE-2024-0798 | Privilege Escalation in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-25 16:42:19 | Deep Dive |