mintplex-labs Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by mintplex-labs
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Unsecured Backend Access in Mintplex Labs AnyThing-LLM Desktop Application for Windows
CVE-2024-8196Mintplex-labsMintplex-labs/anything...9.8CRITICALPath Traversal Vulnerability in Anything-LLM by Mintplex Labs
CVE-2024-8248Mintplex-labsMintplex-labs/anything...7.2HIGHUnauthorized Access Vulnerability in Anything-LLM by Mintplex Labs
CVE-2024-6842Mintplex-labsMintplex-labs/anything...EPSS 10%7.5HIGHPath Traversal Vulnerability in Mintplex Labs' Document Uploads Manager
CVE-2024-10513Mintplex-labsMintplex-labs/anything...7.2HIGHUnauthenticated Denial of Service Vulnerability in Anything-LLM by Mintplex Labs
CVE-2024-8249Mintplex-labsMintplex-labs/anything...7.5HIGHAPI Vulnerability in Mintplex Labs' Anything-LLM Product
CVE-2024-10109Mintplex-labsMintplex-labs/anything...8.3HIGHImproper Access Control Vulnerability in Mintplex-Labs Anything-LLM Application
CVE-2024-3279Mintplex-labsMintplex-labs/anything...9.1CRITICALDenial of Service Vulnerability in User Management Panel
CVE-2024-5216Mintplex-labsMintplex-labs/anything...7.5HIGHPath Traversal to Arbitrary File Read/Delete/Overwrite, DoS Attack, and Admin Account Takeover in mintplex-labs/anything-llm
CVE-2024-5211Mintplex-labsMintplex-labs/anything...9.1CRITICALPrisma Vulnerability Allows Escalation of Privileges to Administrator
CVE-2024-3150Mintplex-labsMintplex-labs/anything...8.8HIGHSSRF Vulnerability in Upload Link Feature of mintplex-labs/anything-llm
CVE-2024-3149Mintplex-labsMintplex-labs/anything...8.8HIGHXSS Vulnerability in anything-llm Affects Both Desktop and Web Applications
CVE-2024-3166Mintplex-labsMintplex-labs/anything...9.6CRITICALStored XSS leading to admin account takeover in mintplex-labs/anything-llm
CVE-2024-3110Mintplex-labsMintplex-labs/anything...8.7HIGHRemote Code Execution Vulnerability in anything-llm Could Lead to Code Execution and Data Modification
CVE-2024-3104Mintplex-labsMintplex-labs/anything...9.8CRITICALUnauthorized Access to VectorDB: Complete Data Loss Possible
CVE-2024-3033Mintplex-labsMintplex-labs/anything...9.4CRITICALMintplex-Labs Anything-LLM Vulnerable to Multiple Security Issues
CVE-2024-3152Mintplex-labsMintplex-labs/anything...8.8HIGHServer-Side Request Forgery (SSRF) Vulnerability in Latest Version of mintplex-labs/anything-llm Allows Bypass of Restrictions
CVE-2024-4084mintplex-labsAnythingllm7.5HIGHImproper Input Validation in mintplex-labs/anything-llm
CVE-2024-3029Mintplex-labsMintplex-labs/anything...9CRITICALAnything LLm Vulnerable to Relative Path Traversal Attack
CVE-2024-0549Mintplex-labsMintplex-labs/anything...8.1HIGHMintplex-Labs' Anything-LLM Vulnerable to Improper Input Validation
CVE-2024-3028Mintplex-labsMintplex-labs/anything...7.2HIGHMass Assignment Vulnerability in mintplex-labs/anything-llm Repository Allows Unauthorized Administrative Access
CVE-2024-0404Mintplex-labsMintplex-labs/anything...9.1CRITICALUnauthorized Privilege Escalation in anything-llm Due to Mass Assignment Vulnerability
CVE-2024-3283Mintplex-labsMintplex-labs/anything...7.2HIGHDoS Vulnerability in 'just me' Mode with Password
CVE-2024-3569Mintplex-labsMintplex-labs/anything...7.5HIGHPath Traversal Vulnerability in mintplex-labs anything-llm
CVE-2024-3025Mintplex-labsMintplex-labs/anything...9.9CRITICALCreate user API role not enforced
CVE-2024-0795Mintplex-labsMintplex-labs/anything...7.2HIGH