Mintplexlabs Anythingllm Docker — known CVE vulnerabilities
Every CVE whose affected-product data names Mintplexlabs Anythingllm Docker, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-3166 — CVSS 9.6 (critical): A Cross-Site Scripting (XSS) vulnerability exists in mintplex-labs/anything-llm, affecting both the desktop application version 1.2.0 and…
CVE-2024-13060 — CVSS 4.3 (medium): A vulnerability in AnythingLLM Docker version 1.3.1 allows users with 'Default' permission to access other users' profile pictures by…