4 matches found
CVE-2024-13059
A vulnerability in mintplex-labs/anything-llm prior to version 1.3.1 allows for path traversal due to improper handling of non-ASCII filenames in the multer library. This vulnerability can lead to arbitrary file write, which can subsequently result in remote code execution. The issue arises when...
CVE-2024-13059
creationtimestamp| type| source ---|---|--- 2025-02-10 18:54:08+00:00| seen| https://infosec.exchange/users/cve/statuses/113981105511208498 2025-02-10 18:58:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113981122733283417 2025-02-10 19:16:00+00:00| seen|...
CVE-2024-13059 Path Traversal in mintplex-labs/anything-llm
A vulnerability in mintplex-labs/anything-llm prior to version 1.3.1 allows for path traversal due to improper handling of non-ASCII filenames in the multer library. This vulnerability can lead to arbitrary file write, which can subsequently result in remote code execution. The issue arises when...
CVE-2024-13059 Path Traversal in mintplex-labs/anything-llm
A vulnerability in mintplex-labs/anything-llm prior to version 1.3.1 allows for path traversal due to improper handling of non-ASCII filenames in the multer library. This vulnerability can lead to arbitrary file write, which can subsequently result in remote code execution. The issue arises when...