Command Injection Vulnerability in Flowise by FlowiseAI
CVE-2026-41137

9.4CRITICAL

Key Information:

Vendor: Flowiseai
Status: Flowise; Flowise-components
Vendor: CVE Published:; 23 April 2026

What is CVE-2026-41137?

The Flowise software, a drag-and-drop interface designed for creating custom large language model workflows, is vulnerable to command injection prior to version 3.1.0. This flaw exists because the CSVAgent component allows users to input custom Pandas CSV read code without adequate sanitization checks. As a result, an attacker can deliver a crafted payload that gets executed on the server, potentially leading to unauthorized command execution. Users are advised to upgrade to version 3.1.0 or later to mitigate this risk.

Affected Version(s)

Flowise < 3.1.0

flowise-components < 3.1.0

References

https://github.com/FlowiseAI/Flowise/security/advisories/...

x_refsource_CONFIRM

CVSS V4

Score:

9.4

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 23, 2026
Vulnerability Reserved
Apr 17, 2026

CVE-2026-41137 Data

JSON

Flowiseai

What is CVE-2026-41137?

Affected Version(s)

References

CVSS V4

Timeline