0.1.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

mintplexlabs

NVD

Published: 2024-02-28

Updated: 2025-01-10

Summary

A user who is privileged already `manager` or `admin` can set their profile picture via the frontend API using a relative filepath to then user the PFP GET API to download any valid files. The attacker would have to have been granted privileged permissions to the system before executing this attack.

Vulnerable Configurations

Part	Description	Count
Application	Mintplexlabs Mintplexlabs Anythingllm - Mintplexlabs Anythingllm 0.0.1 Mintplexlabs Anythingllm 0.1.0	3

References

https://github.com/mintplex-labs/anything-llm/commit/e1dcd5ded010b03abd6aa32d1bf0668a48e38e17
https://github.com/mintplex-labs/anything-llm/commit/e1dcd5ded010b03abd6aa32d1bf0668a48e38e17
https://huntr.com/bounties/c6afeb5e-f211-4b3d-aa4b-6bad734217a6
https://huntr.com/bounties/c6afeb5e-f211-4b3d-aa4b-6bad734217a6