CVE-2026-32628
HIGHAnythingLLM has SQL Injection in Built-in SQL Agent Plugin via Unsanitized table_name Parameter
Title source: cnaDescription
AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, a SQL injection vulnerability in the built-in SQL Agent plugin allows any user who can invoke the agent to execute arbitrary SQL commands on connected databases. The getTableSchemaSql() method in all three database connectors (MySQL, PostgreSQL, MSSQL) constructs SQL queries using direct string concatenation of the table_name parameter without sanitization or parameterization.
References (2)
Core 2
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/Mintplex-Labs/anything-llm/security/advisories/GHSA-jwjx-mw2p-5wc7
X_Refsource_Misc x_refsource_misc
https://github.com/Mintplex-Labs/anything-llm/commit/334ce052f063b53a4275518cbed3bab357695d7e
Scores
CVSS v3
8.8
EPSS
0.0030
EPSS Percentile
21.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-89
Status
published
Products (2)
Mintplex-Labs/anything-llm
<= 1.11.1
mintplexlabs/anythingllm
< 1.11.1
Published
Mar 16, 2026
Tracked Since
Mar 16, 2026