infiniflow Summary
Latest vulnerabilities published by infiniflow
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Zip Slip Vulnerability in RAGFlow Open-Source Engine
CVE-2026-24770InfiniflowRagflow9.8CRITICALInsecure Key Generation in RAGFlow API Allows Token Derivation
CVE-2025-69286InfiniflowRagflow8.9HIGHArbitrary Code Execution Vulnerability in RAGFlow Open-Source Engine
CVE-2025-68700InfiniflowRagflow8.6HIGHStored Cross-Site Scripting Vulnerability in RAGFlow by Infiniflow
CVE-2025-51462InfiniflowRAGFlow6.1MEDIUMAccount Takeover Vulnerability in RAGFlow by Infiniflow
CVE-2025-48187InfiniflowRagflow9.8CRITICALServer-Side Request Forgery Vulnerability in Infiniflow/Ragflow by Infiniflow
CVE-2024-12779InfiniflowInfiniflow/ragflow7.5HIGHImproper Authentication Vulnerability in Ragflow by Infiniflow
CVE-2024-12869InfiniflowInfiniflow/ragflow4.3MEDIUMXSS Vulnerability in Ragflow by Infiniflow Exposes User Data
CVE-2024-12871InfiniflowInfiniflow/ragflow5.4MEDIUMMultiple Vulnerabilities in Infiniflow Ragflow Affecting Internal Network Security
CVE-2024-12450InfiniflowInfiniflow/ragflow9.8CRITICALStored Cross-Site Scripting Vulnerability in Infiniflow's Ragflow
CVE-2024-12870InfiniflowInfiniflow/ragflow5.4MEDIUMRemote Code Execution Vulnerability in RagFlow by Infiniflow
CVE-2024-12433InfiniflowInfiniflow/ragflow9.8CRITICALAccount Access Vulnerability in RAGFlow by infiniflow
CVE-2024-12880InfiniflowInfiniflow/ragflow6.5MEDIUMSQL Injection Vulnerability in RAGFlow Open-Source Engine
CVE-2025-27135InfiniflowRagflow8.9HIGHInsecure Direct Object Reference in RAGFlow Open-Source Engine
CVE-2025-25282InfiniflowRagflow8.1HIGHImproper Access Control in RAGFlow Leads to Unauthorized Document Access
CVE-2024-53450InfiniflowRAGFlowInfiniflow Ragflow Remote Code Execution Vulnerability
CVE-2024-10131InfiniflowInfiniflow/ragflow8.8HIGH