Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

anything-llm — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in anything-llm, with AI-generated Chinese analysis, references, and POCs.

This page catalogs known security weaknesses associated with the anything-llm product, focusing on software vulnerability aggregates for the AI development framework. It compiles a comprehensive record of reported defects, misconfigurations, and design flaws that may expose users to unauthorized access, data exposure, or system compromise. The collection encompasses vulnerability data spanning from the initial release of the software through to the most recent patches and advisories issued by the vendor or community maintainers. Readers can utilize this resource to track a vendor's advisory history, understanding how quickly reported issues are addressed and patched over time. Furthermore, users can deepen their understanding of a specific weakness class by observing how it manifests within the context of large language model interfaces and vector database integrations. The page also allows for a detailed look up of a product's vulnerability history, providing a chronological view of security incidents and remediation efforts. This aggregated data serves as a critical reference for security analysts, developers, and system administrators who need to assess the current risk posture of any-thing-llm deployments. By reviewing the collective findings, stakeholders can make informed decisions regarding update schedules, configuration hardening, and third-party component assessments. The goal is to provide transparency into the evolving threat landscape surrounding this specific open-source tool, ensuring that all identified issues are documented and accessible for review without relying on fragmented sources.

Vendor: Mintplex-Labs

CVE IDTitleCVSSSeverityPublished
CVE-2026-55611 AnythingLLM: embed-parsed-file cleanup deletes any parsed file by ID without ownership scoping (cross-tenant IDOR deletion) CWE-639--2026-06-24
CVE-2026-48789 AnythingLLM: Windows path containment bypass in document folder route CWE-22 4.3 Medium2026-06-24
CVE-2026-47713 AnythingLLM: Legacy mobile device tokens bypass multi-user workspace scoping after mode migration CWE-285 2.0 Low2026-05-28
CVE-2026-48116 AnythingLLM: RCE via ripgrep --pre argument injection in filesystem-search-files agent skill CWE-77 7.5 High2026-05-28
CVE-2026-45403 AnythingLLM: filesystem-copy-file follows nested symlinks and copies files from outside the allowed directory CWE-59 2.0 Low2026-05-28
CVE-2026-42456 AnythingLLM: Cross-User TTS Audio Disclosure via Chat ID (IDOR) CWE-200 4.3 Medium2026-05-08
CVE-2026-41318 AnythingLLM vulnerable to stored DOM XSS in chart caption renderer - LLM-driven prompt injection produces executable HTML via unsanitized renderMarkdown(content.caption) in Chartable component CWE-79 5.4 Medium2026-04-24
CVE-2026-32719 AnythingLLM has a Zip Slip Path Traversal and Code Execution via Community Hub Plugin Import CWE-22 4.2 Medium2026-03-13
CVE-2026-32717 AnythingLLM access control bypass: suspended users can continue using Browser Extension API keys CWE-863 2.7 Low2026-03-13
CVE-2026-32715 AnythingLLM Manager Privilege Bypass Allows Access to Admin-Only System Preferences CWE-863 3.8 Low2026-03-13
CVE-2026-32628 AnythingLLM has SQL Injection in Built-in SQL Agent Plugin via Unsanitized table_name Parameter CWE-89 8.8 -2026-03-13
CVE-2026-32626 AnythingLLM has a Streaming Phase XSS to RCE via LLM Response Injection CWE-79 9.7 Critical2026-03-13
CVE-2026-32617 AnythingLLM Permissable CORS policy CWE-942 7.1 High2026-03-13
CVE-2026-24478 AnythingLLM vulnerable to Path Traversal CWE-22 7.2 High2026-01-26
CVE-2026-24477 AnythingLLM has key leak in `systemSettings.js` CWE-201 9.1AICriticalAI2026-01-26
CVE-2026-21484 AnythingLLM Vulnerable to Username Enumeration w/ Password Recovery CWE-203 5.3 Medium2026-01-03
CVE-2024-22422 Unauthenticated Denial of Service (DOS) attack in AnythingLLM CWE-754 7.5 High2024-01-19

All 17 known CVE vulnerabilities affecting anything-llm with full Chinese analysis, references, and POCs where available.