Vulnerabilities > Exposure of Sensitive Information Through Metadata
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-20 | CVE-2024-5213 | Exposure of Sensitive Information Through Metadata vulnerability in Mintplexlabs Anythingllm 0.0.1/0.1.0/1.5.3 In mintplex-labs/anything-llm versions up to and including 1.5.3, an issue was discovered where the password hash of a user is returned in the response after login (`POST /api/request-token`) and after account creations (`POST /api/admin/users/new`). | 6.5 |
| 2023-04-11 | CVE-2023-1974 | Exposure of Sensitive Information Through Metadata vulnerability in Answer Exposure of Sensitive Information Through Metadata in GitHub repository answerdev/answer prior to 1.0.8. | 6.5 |