VYPR

Flowise

by Flowiseai

npm: flowise

Source repositories

CVEs (66)

  • CVE-2026-56274Jun 23, 2026
    risk 0.00cvss epss 0.03

    Flowise before 3.1.2 contains multiple OS command injection vulnerabilities in the Custom MCP Server feature due to incomplete command-flag validation and a regex bypass in local file access restrictions. An attacker with a Flowise account of any role, or API access with…

  • CVE-2025-71337Jun 23, 2026
    risk 0.00cvss epss 0.00

    Flowise before 3.0.10 (affected versions 3.0.7 and earlier) contains an unverified email change vulnerability. An authenticated user can change the account email address, used as a login identifier and password-recovery channel, via the account profile endpoint without…

  • CVE-2026-56268Jun 22, 2026
    risk 0.00cvss epss 0.00

    Flowise before 3.1.2 contains an information disclosure vulnerability in the /api/v1/chatflows/apikey/:apikey endpoint. When the keyonly query parameter is omitted (the default), the endpoint returns not only the chatflows bound to the supplied API key but also all chatflows…

  • CVE-2026-12821Jun 21, 2026
    risk 0.00cvss epss 0.00

    A vulnerability was determined in FlowiseAI Flowise up to 3.1.2. The impacted element is an unknown function of the file packages/components/nodes/documentloaders/S3/S3.ts of the component S3 Document Loader. Executing a manipulation can lead to path traversal. It is possible to…

  • CVE-2026-56276Jun 20, 2026
    risk 0.00cvss epss 0.00

    Flowise before 3.1.2 contains a mass assignment vulnerability in the PUT /api/v1/user endpoint that allows authenticated users to directly modify the credential field without validation. Attackers can bypass password change verification and session invalidation by supplying a…

  • CVE-2026-56267Jun 20, 2026
    risk 0.00cvss epss 0.00

    Flowise before 3.0.13 contains an information exposure vulnerability in the POST /api/v1/account/forgot-password endpoint that returns full user objects including PII to unauthenticated attackers. An attacker can enumerate valid email addresses and harvest sensitive user data…

  • CVE-2025-71331Jun 20, 2026
    risk 0.00cvss epss 0.00

    Flowise before 3.0.8 contains a cross-site scripting (XSS) vulnerability caused by insufficient input filtering in chat messages and custom agent functions. An attacker can inject malicious JavaScript by sending an iframe payload (e.g., <iframe…

  • CVE-2024-58351Jun 20, 2026
    risk 0.00cvss epss 0.01

    Flowise before 2.1.4 allows configuration to be injected into the Chainflow during execution via the overrideConfig option, supported in both the frontend web integration and the backend Prediction API. Because this feature is enabled by default with no allow-list of permitted…

  • CVE-2026-31829Mar 10, 2026
    risk 0.00cvss epss 0.02

    Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.0.13, Flowise exposes an HTTP Node in AgentFlow and Chatflow that performs server-side HTTP requests using user-controlled URLs. By default, there are no restrictions on target…

  • CVE-2026-30823Mar 7, 2026
    risk 0.00cvss epss 0.00

    Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, there is an IDOR vulnerability, leading to account takeover and enterprise feature bypass via SSO configuration. This issue has been patched in version 3.0.13.

  • CVE-2026-30822Mar 7, 2026
    risk 0.00cvss epss 0.13

    Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, unauthenticated users can inject arbitrary values into internal database fields when creating leads. This issue has been patched in version 3.0.13.

  • CVE-2026-30821Mar 7, 2026
    risk 0.00cvss epss 0.18

    Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, the /api/v1/attachments/:chatflowId/:chatId endpoint is listed in WHITELIST_URLS, allowing unauthenticated access to the file upload API. While the server validates…

  • CVE-2026-30820Mar 7, 2026
    risk 0.00cvss epss 0.00

    Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, Flowise trusts any HTTP client that sets the header x-request-from: internal, allowing an authenticated tenant session to bypass all /api/v1/** authorization checks.…

  • CVE-2025-34267Oct 14, 2025
    risk 0.00cvss epss 0.06

    Flowise v3.0.1 < 3.0.8 and all versions after with 'ALLOW_BUILTIN_DEP' enabled contain an authenticated remote code execution vulnerability and node VM sandbox escape due to insecure use of integrated modules (Puppeteer and Playwright) within the nodevm execution environment. An…

  • CVE-2025-61913Oct 8, 2025
    risk 0.00cvss epss 0.12

    Flowise is a drag & drop user interface to build a customized large language model flow. In versions prior to 3.0.8, WriteFileTool and ReadFileTool in Flowise do not restrict file path access, allowing authenticated attackers to exploit this vulnerability to read and write…

  • CVE-2025-61687Oct 6, 2025
    risk 0.00cvss epss 0.10

    Flowise is a drag & drop user interface to build a customized large language model flow. A file upload vulnerability in version 3.0.7 of FlowiseAI allows authenticated users to upload arbitrary files without proper validation. This enables attackers to persistently store…

  • CVE-2025-50538Oct 6, 2025
    risk 0.00cvss epss 0.13

    Flowise before 3.0.5 allows XSS via an IFRAME element when an admin views the chat log.

  • CVE-2025-29192Oct 6, 2025
    risk 0.00cvss epss 0.00

    Flowise before 3.0.5 allows XSS via a FORM element and an INPUT element when an admin views the chat log.

  • CVE-2025-59527Sep 22, 2025
    risk 0.00cvss epss 0.05

    Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5, a Server-Side Request Forgery (SSRF) vulnerability was discovered in the /api/v1/fetch-links endpoint of the Flowise application. This vulnerability allows an attacker to…

  • CVE-2025-58434Sep 12, 2025
    risk 0.00cvss epss 0.50

    Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5 and earlier, the `forgot-password` endpoint in Flowise returns sensitive information including a valid password reset `tempToken` without authentication or verification.…