{"id":"CVE-2024-8251","details":"A vulnerability in mintplex-labs/anything-llm prior to version 1.2.2 allows for Prisma injection. The issue exists in the API endpoint \"/embed/:embedId/stream-chat\" where user-provided JSON is directly taken to the Prisma library's where clause. An attacker can exploit this by providing a specially crafted JSON object, such as {\"sessionId\":{\"not\":\"a\"}}, causing Prisma to return all data from the table. This can lead to unauthorized access to all user queries in embedded chat mode.","modified":"2026-04-10T05:19:48.799581Z","published":"2025-03-20T10:15:41.983Z","references":[{"type":"FIX","url":"https://github.com/mintplex-labs/anything-llm/commit/334fd9cdd02ad4aa6a3c9bdfc95e7764651c13f4"},{"type":"EVIDENCE","url":"https://huntr.com/bounties/7c263ef1-7d50-475a-9425-b15df4e0403c"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mintplex-labs/anything-llm","events":[{"introduced":"0"},{"fixed":"de9f9a0ce81a89cde87a89b66bc7e35626b73a9f"},{"fixed":"334fd9cdd02ad4aa6a3c9bdfc95e7764651c13f4"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.2.2"}]}}],"versions":["v1.0.0","v1.1.0","v1.1.1","v1.2.0","v1.2.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-8251.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}]}