Critical severity9.9NVD Advisory· Published May 29, 2026· Updated Jun 2, 2026
CVE-2026-45312
CVE-2026-45312
Description
RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. In 0.24.0 and earlier, a Jinja2 template injection in the prompt generator (rag/prompts/generator.py) allows any authenticated user to execute arbitrary OS commands on the server. Any normal user can register, create a Canvas workflow with a DuckDuckGo + LLM component chain, and trigger the SSTI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=0.24.0+ 1 more
- (no CPE)range: <=0.24.0
- (no CPE)range: <=0.24.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.