Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
CVE-2024-13059: Exploiting Path Traversal in AnythingLLM for Remote Code Execution
Malware and Vulnerabilities
April 18, 2025
offsec
A critical vulnerability (CVE-2024-13059) in the open-source AI framework AnythingLLM allows attackers with administrative privileges to execute arbitrary code remotely. The flaw stems from improper filename sanitization in the multer library.
Read More
CVE-2024-13059
AnythingLLM
Publisher
Previous
BreachForums is Offline: A New Twist or Just Another Cy ...
Breaches and Incidents
Next
Dark Web Market: STYX Market
Threat Intel & Info Sharing
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_77796953_MEDIUM.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/3b80_shutterstock_1063646387.jpg)
