flowiseai Latest Vulnerabilities
Latest vulnerabilities published by flowiseai
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Flowise: Evaluator create+update mass-assignment allows cross-workspace evaluator takeover
CVE-2026-46480FlowiseaiFlowise7.7HIGHFlowise: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover
CVE-2026-46479FlowiseaiFlowise7.7HIGHFlowise: DatasetRow create+update mass-assignment allows cross-workspace row takeover
CVE-2026-46478FlowiseaiFlowise7.7HIGHFlowise: Dataset create+update mass-assignment allows cross-workspace dataset takeover
CVE-2026-46477FlowiseaiFlowise7.7HIGHFlowise: CustomTemplate create+update mass-assignment allows cross-workspace template takeover
CVE-2026-46476FlowiseaiFlowise7.7HIGHFlowise: Assistant create+update mass-assignment allows cross-workspace assistant takeover
CVE-2026-46475FlowiseaiFlowise7.7HIGHFlowise: Credential Data Leak
CVE-2026-46443FlowiseaiFlowise7HIGHFlowise: Authenticated Host RCE via POST /api/v1/node-custom-function and NodeVM Sandbox Escape
CVE-2026-46442FlowiseaiFlowise9.4CRITICALFlowise: Mass Assignment in Assistant Update Endpoint Allows Cross-Workspace Resource Reassignment
CVE-2026-46441FlowiseaiFlowise7.6HIGHFlowise: Basic Auth Credentials Exposed via API
CVE-2026-46440FlowiseaiFlowise7.5HIGHFlowise: Mass Assignment in Chatflow Update Endpoint Allows Cross-Workspace AgentFlow Reassignment
CVE-2026-42863FlowiseaiFlowise7.6HIGHFlowise: Mass Assignment in Tool Update Endpoint Allows Cross-Workspace Resource Reassignment
CVE-2026-42862FlowiseaiFlowise7.6HIGHFlowise: Mass Assignment in Variable Update Endpoint Allows Cross-Workspace Resource Reassignment
CVE-2026-42861FlowiseaiFlowise7.6HIGHFlowise: Vector Store No Permission Checks
CVE-2026-46444FlowiseaiFlowise8.7HIGHHTTP Client Vulnerability in Flowise by FlowiseAI
CVE-2026-43995FlowiseaiFlowise5.3MEDIUMInformation Disclosure Vulnerability in FlowiseAI Flowise by Flowise
CVE-2026-8028FlowiseaiFlowiseπΎπ‘6.3MEDIUMAuthorization Bypass Vulnerability in FlowiseAI Flowise User Controller
CVE-2026-8027FlowiseaiFlowise5.3MEDIUMInformation Disclosure Vulnerability in FlowiseAI Flowise API
CVE-2026-8026FlowiseaiFlowise6.3MEDIUMInput Injection Vulnerability in Flowise Drag & Drop Interface
CVE-2026-41274FlowiseaiFlowise9.3CRITICALCode Execution Vulnerability in Flowise Product by FlowiseAI
CVE-2026-41264FlowiseaiFlowise9.2CRITICALUnrestricted Command Execution Vulnerability in Flowise by FlowiseAI
CVE-2026-41265FlowiseaiFlowise9.2CRITICALUnauthorized Access in Flowise Drag & Drop Interface for Text-to-Speech Generation
CVE-2026-41279FlowiseaiFlowise8.2HIGHInsecure API Exposure in Flowise Interface by FlowiseAI
CVE-2026-41278FlowiseaiFlowise8.7HIGHAuthentication Bypass Vulnerability in Flowise by FlowiseAI
CVE-2026-41276FlowiseaiFlowise7.7HIGHMass Assignment Vulnerability in Flowise DocumentStore by FlowiseAI
CVE-2026-41277FlowiseaiFlowise7.6HIGH