High severityNVD Advisory· Published Apr 9, 2025· Updated Apr 9, 2025
CVE-2025-29189
CVE-2025-29189
Description
Flowise <= 2.2.3 is vulnerable to SQL Injection. via tableName parameter at Postgres_VectorStores.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
flowise-componentsnpm | < 2.2.4 | 2.2.4 |
Affected products
2- Flowise/Flowisedescription
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-gjx9-wg9x-7gvpghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-29189ghsaADVISORY
- drive.google.com/file/d/1WHPslTmQmAM9xPJifULS2qAo7hcidB4L/viewghsaWEB
- github.com/FlowiseAI/Flowise/commit/9a417bdc95f58d6dd92cbf60dad42414aba34754ghsaWEB
- github.com/FlowiseAI/Flowise/pull/3818ghsaWEB
News mentions
0No linked articles in our index yet.