AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, The ImportedPlugin.importCommunityItemFromUrl() function in server/utils/agents/imported.js downloads a ZIP file from a community hub URL and extracts it using AdmZip.extractAllTo() without validating file paths within the archive. This enables a Zip Slip path traversal attack that can lead to arbitrary code execution.
Exploitability
AV:NAC:HPR:HUI:RScope
S:UImpact
C:NI:HA:N4.2/CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:H/A:NInjection
Input Validation