CVE-2026-32628 HIGH

CVE-2026-32628: AnythingLLM has SQL Injection in Built-in SQL Agent Plugin via Unsanitized table_name Parameter

Vendor Mintplex-Labs
Product anything-llm
Weakness CWE-89 · SQLi
Published March 13, 2026
Last update March 16, 2026

CVSS base score

7.7/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, a SQL injection vulnerability in the built-in SQL Agent plugin allows any user who can invoke the agent to execute arbitrary SQL commands on connected databases. The getTableSchemaSql() method in all three database connectors (MySQL, PostgreSQL, MSSQL) constructs SQL queries using direct string concatenation of the table_name parameter without sanitization or parameterization.

Key dates

02Disclosure timeline

March 13, 2026 CVE published
March 16, 2026 Record updated