CVE-2026-5627
Mintplex Labs · AnythingLLM
A path traversal vulnerability in the AgentFlows component of AnythingLLM allows unauthenticated attackers to read or delete arbitrary files on the server.
Executive summary
A critical path traversal vulnerability in AnythingLLM allows unauthorized access to sensitive files, including API keys, and potential denial of service.
Vulnerability
The vulnerability is located within the AgentFlows component due to improper input validation in loadFlow and deleteFlow methods. An unauthenticated attacker can manipulate file paths to escape the intended directory, allowing for arbitrary file disclosure or deletion.
Business impact
With a CVSS score of 9.1, this vulnerability poses a severe risk to confidentiality and availability. Unauthorized access to configuration files can expose sensitive API keys, while the ability to delete system files leads to service disruption, causing significant operational downtime.
Remediation
Immediate Action: Upgrade to AnythingLLM version 1.12.1 or later to resolve the path traversal flaw.
Proactive Monitoring: Audit server access logs for requests containing directory traversal sequences (e.g., ../) targeting the AgentFlows API endpoints.
Compensating Controls: Implement a Web Application Firewall (WAF) to filter and block requests containing path traversal patterns before they reach the application.
Exploitation status
Public Exploit Available: Unknown
Analyst recommendation
The severity of this path traversal vulnerability necessitates an immediate update to the patched version. Administrators should also audit their server environments to ensure that sensitive configuration files were not compromised prior to the application of the patch.