Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

mintplex-labs/anything-llm — Vulnerabilities & Security Advisories 57

All 57 CVE vulnerabilities found in mintplex-labs/anything-llm, with AI-generated Chinese analysis, references, and POCs.

Vendor: mintplex-labs

CVE IDTitleCVSSSeverityPublished
CVE-2026-5627 Path Traversal in mintplex-labs/anything-llm CWE-29 9.1AICriticalAI2026-04-07
CVE-2024-8196 Missing Authentication for Critical Function in mintplex-labs/anything-llm CWE-306 9.1 -2025-03-20
CVE-2024-8248 Path Traversal in mintplex-labs/anything-llm CWE-29 8.8 -2025-03-20
CVE-2024-6842 Exposure of Sensitive Information in mintplex-labs/anything-llm CWE-306 7.5 -2025-03-20
CVE-2024-10513 Path Traversal in mintplex-labs/anything-llm CWE-23 7.2 -2025-03-20
CVE-2024-8249 Unauthenticated Denial of Service (DoS) in mintplex-labs/anything-llm CWE-248 7.5 -2025-03-20
CVE-2024-10109 Incorrect Authorization in mintplex-labs/anything-llm CWE-863 7.6 -2025-03-20
CVE-2024-7771 Denial of Service in mintplex-labs/anything-llm CWE-400 7.5 -2025-03-20
CVE-2024-8251 Prisma Injection in mintplex-labs/anything-llm CWE-89 7.5 -2025-03-20
CVE-2024-13060 Improper Authorization in mintplex-labs/anything-llm CWE-862 4.3 -2025-03-20
CVE-2024-13059 Path Traversal in mintplex-labs/anything-llm CWE-29 7.2 -2025-02-10
CVE-2024-7783 Improper Storage of Sensitive Information in Bearer Token in mintplex-labs/anything-llm CWE-312 7.5AIHighAI2024-10-29
CVE-2024-3279 Improper Access Control in mintplex-labs/anything-llm CWE-306 8.2AIHighAI2024-08-09
CVE-2024-5216 Denial of Service in mintplex-labs/anything-llm CWE-400 9.1AICriticalAI2024-06-25
CVE-2024-5213 Exposure of Sensitive Information in mintplex-labs/anything-llm CWE-201 7.5AIHighAI2024-06-20
CVE-2024-5208 Uncontrolled Resource Consumption in mintplex-labs/anything-llm CWE-770 6.5AIMediumAI2024-06-19
CVE-2024-5211 Path Traversal to Arbitrary File Read/Delete/Overwrite, DoS Attack, and Admin Account Takeover in mintplex-labs/anything-llm CWE-29 9.8AICriticalAI2024-06-12
CVE-2024-3150 Privilege Escalation in mintplex-labs/anything-llm CWE-755 8.8AIHighAI2024-06-06
CVE-2024-3149 SSRF in mintplex-labs/anything-llm CWE-918 8.1AIHighAI2024-06-06
CVE-2024-3153 Uncontrolled Resource Consumption in mintplex-labs/anything-llm CWE-400 7.5AIHighAI2024-06-06
CVE-2024-3166 Cross-Site Scripting (XSS) Vulnerability in mintplex-labs/anything-llm CWE-79 8.8AIHighAI2024-06-06
CVE-2024-3102 JSON Injection in mintplex-labs/anything-llm CWE-307 7.5AIHighAI2024-06-06
CVE-2024-3110 Stored XSS leading to admin account takeover in mintplex-labs/anything-llm CWE-79 4.8AIMediumAI2024-06-06
CVE-2024-3104 Remote Code Execution in mintplex-labs/anything-llm CWE-78 10.0AICriticalAI2024-06-06
CVE-2024-3033 Improper Authorization in mintplex-labs/anything-llm CWE-863 8.2AIHighAI2024-06-06
CVE-2024-3152 Privilege Escalation and Local File Inclusion in mintplex-labs/anything-llm CWE-918 9.8AICriticalAI2024-06-06
CVE-2024-4084 SSRF vulnerability in mintplex-labs/anything-llm CWE-918 9.1 -2024-06-05
CVE-2024-4286 Improper Neutralization of Special Elements in mintplex-labs/anything-llm CWE-917 6.5 -2024-05-26
CVE-2024-4287 Improper Input Validation in mintplex-labs/anything-llm CWE-20 7.2AIHighAI2024-05-20
CVE-2024-4284 Denial of Service in mintplex-labs/anything-llm CWE-400 7.5 -2024-05-19

All 57 known CVE vulnerabilities affecting mintplex-labs/anything-llm with full Chinese analysis, references, and POCs where available.