CVE-2024-4287 | mintplex-labs anything-llm HTTP POST Request update input validation

Posted by Angelo Barbosa | May 20, 2024 | CVE

A vulnerability was found in mintplex-labs anything-llm. It has been classified as critical. This affects an unknown part of the file /api/workspace/:workspace-slug/update of the component HTTP POST Request Handler. The manipulation leads to improper input validation.

This vulnerability is uniquely identified as CVE-2024-4287. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-4287 | mintplex-labs anything-llm HTTP POST Request update input validation

Related Posts

CVE-2023-44117 | Huawei HarmonyOS/EMUI authentication spoofing

CVE-2024-2480 | MHA Sistemas arMHAzena 9.6.0.0 Executa Page Companhia/Planta/Agente de/Agente até sql injection

CVE-2024-29810 | 10Web PhotoGallery Plugin up to 1.8.21 on WordPress admin-ajax.php thumb_url cross site scripting

CVE-2023-39853 | Dzzoffice 2.01 Network Disk Backend doobj/doevent sql injection