CVE-2026-32617 | Mintplex-Labs anything-llm up to 1.11.1 HTTP Endpoint cross-domain policy

Inserito da Angelo Barbosa | Mar 13, 2026 | CVE

A vulnerability classified as problematic was found in Mintplex-Labs anything-llm up to 1.11.1. Affected is an unknown function of the component HTTP Endpoint. Executing a manipulation can lead to permissive cross-domain policy with untrusted domains.

The identification of this vulnerability is CVE-2026-32617. The attack may be launched remotely. There is no exploit available.

CVE-2026-32617 | Mintplex-Labs anything-llm up to 1.11.1 HTTP Endpoint cross-domain policy

Post correlati

CVE-2024-32717 | WPDeveloper SchedulePress Plugin up to 5.0.8 on WordPress authorization

CVE-2025-9441 | iATS Online Forms Plugin up to 1.2 on WordPress order sql injection

CVE-2025-27113 | xmlsoft libxml2 up to 2.12.9/2.13.5 pattern.c xmlPatMatch null pointer dereference

CVE-2024-46293 | SourceCodester Online Medicine Ordering System 1.0 access control