CVE-2024-13059

HIGH

mintplex-labs/anything-llm <1.3.1 - Path Traversal

Title source: llm

Description

A vulnerability in mintplex-labs/anything-llm prior to version 1.3.1 allows for path traversal due to improper handling of non-ASCII filenames in the multer library. This vulnerability can lead to arbitrary file write, which can subsequently result in remote code execution. The issue arises when the filename transformation introduces '../' sequences, which are not sanitized by multer, allowing attackers with manager or admin roles to write files to arbitrary locations on the server.

References (2)

[Patch] https://github.com/mintplex-labs/anything-llm/commit/0b7bf68f2c02ca68075970fbf85d5a70ca5e94ca

View Patch ZIP pw:eip

[Exploit, Third Party Advisory] https://huntr.com/bounties/92a875fe-c5b3-485c-b03f-d3185189e0b1

Scores

CVSS v3 7.2

EPSS 0.5539

EPSS Percentile 98.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-29 CWE-22

Status published

Products (1)

mintplexlabs/anythingllm < 1.3.1

Published Feb 10, 2025

Tracked Since Feb 18, 2026