CVE-2024-0440 | mintplex-labs anything-llm up to 0.0.x POST server-side request forgery

Inserito da Angelo Barbosa | Feb 26, 2024 | CVE

A vulnerability, which was classified as critical, has been found in mintplex-labs anything-llm up to 0.0.x. This issue affects some unknown processing of the component POST Handler. The manipulation leads to server-side request forgery.

The identification of this vulnerability is CVE-2024-0440. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0440 | mintplex-labs anything-llm up to 0.0.x POST server-side request forgery

Post correlati

CVE-2024-5841 | Google Chrome prior 126.0.6478.54 V8 use after free (ID 326765)

CVE-2024-38375 | fastly js-compute-runtime up to 3.16.0 use after free (GHSA-mp3g-vpm9-9vqv)

CVE-2023-39922 | ThemeFusion Avada Plugin up to 7.11.1 on WordPress authorization

CVE-2024-32324 | Shenzhen Libituo Technology LBT-T300-T400 3.2 rc config_vpn_pptp vpn_client_ip buffer overflow