Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

flowise

npm · Flowiseai Server · Package

Security Advisories for flowise in npm

High
17 days ago

Flowise has unsandboxed remote code execution via Custom MCP GSA_kwCzR0hTQS02OTMzLWpweDUtcTg3cc4ABMIl

npm flowise
Critical
17 days ago

Flowise has arbitrary file access due to missing chat flow id validation GSA_kwCzR0hTQS1xNjdxLTU0OXEtcDg0Oc4ABMIk

npm flowise
Critical
17 days ago

Flowise has an Arbitrary File Read GSA_kwCzR0hTQS05OXBnLWhxdngtcjRnZs4ABMIj

npm flowise
Critical
17 days ago

Flowise has Remote Code Execution vulnerability GSA_kwCzR0hTQS0zZ2NtLWY2cXgtZmY3cM4ABMIi

npm flowise
High
17 days ago

FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability GSA_kwCzR0hTQS1ocjkyLTRxMzUtNGozbc4ABMIh

npm flowise
Critical
17 days ago

FlowiseAI Pre-Auth Arbitrary Code Execution GSA_kwCzR0hTQS03OTQ0LTdjNnItNTV2ds4ABMIg

npm flowise
Critical
20 days ago

Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover GSA_kwCzR0hTQS13Z3B2LTZqNjMteDVwaM4ABMB8

npm flowise
Critical
about 2 months ago

Flowise OS command remote code execution GSA_kwCzR0hTQS0ydnYyLTN4OHgtNGd2N84ABLD2

npm flowise
Critical
about 2 months ago

Flowise JS injection remote code execution GSA_kwCzR0hTQS1xNHh4LW1jM3EtMjN4OM4ABLDn

npm flowise
Moderate
6 months ago

FlowiseDB vulnerable to SQL Injection by authenticated users GSA_kwCzR0hTQS05YzRjLWc5NW0tYzhjcM4ABGhA

npm flowise
Critical
7 months ago

Flowise allows arbitrary file write to RCE GSA_kwCzR0hTQS04dnZ4LXF2cTktNTk0OM4ABFfO

npm flowise
Critical
7 months ago

Flowise Pre-auth Arbitrary File Upload GSA_kwCzR0hTQS1oNDJ4LXh4MnEtNnY2Z84ABFbt

npm flowise
High
7 months ago

FlowiseAI Flowise arbitrary file upload vulnerability GSA_kwCzR0hTQS02OWpxLXFyN3ctajdxaM4ABFFr

npm flowise
High
10 months ago

Flowise OverrideConfig security vulnerability GSA_kwCzR0hTQS01Y3BoLXd2bTktNDVnas4ABBnC

npm flowise
Moderate
about 1 year ago

Flowise and Flowise Chat Embed vulnerable to Stored Cross-site Scripting GSA_kwCzR0hTQS1tNXA5LXh2eGotNjRjOM4AA_wR

npm flowise, flowise-embed
High
about 1 year ago

Flowise Unauthenticated Denial of Service (DoS) vulnerability GSA_kwCzR0hTQS00OHg0LW14OGYtZ3I0aM4AA--P

npm flowise
High
about 1 year ago

Flowise Authentication Bypass vulnerability GSA_kwCzR0hTQS0ycTR3LXg4aDItMmZ2aM4AA--Q

npm flowise
Moderate
about 1 year ago

Flowise Cross-site Scripting in api/v1/chatflows/id GSA_kwCzR0hTQS0yamNoLXFjOTYtOWY1Z84AA-Y6

npm flowise
Moderate
about 1 year ago

Flowise Cross-site Scripting in/api/v1/credentials/id GSA_kwCzR0hTQS13eG00LTlmOHAtZ2dnds4AA-Y7

npm flowise
Moderate
about 1 year ago

Flowise Cross-site Scripting in /api/v1/public-chatflows/id GSA_kwCzR0hTQS1mY2N4LTJwd2otaHJxN84AA-Y5

npm flowise
Moderate
about 1 year ago

Flowise Cross-site Scripting in /api/v1/chatflows-streaming/id GSA_kwCzR0hTQS04NThjLXF4dngtcmc5ds4AA-Y8

npm flowise
High
about 1 year ago

Flowise Path Injection at /api/v1/openai-assistants-file GSA_kwCzR0hTQS1oOTk3LTNmeGotcDVqOM4AA-Y2

npm flowise
High
about 1 year ago

Flowise Cors Misconfiguration in packages/server/src/index.ts GSA_kwCzR0hTQS02NmYyLXh4Z20tZjZ4cM4AA-Y4

npm flowise
High
over 1 year ago

Flowise vulnerable to code injection via api/v1 GSA_kwCzR0hTQS02d3A2LTIyeDUtcnIzd84AA7Y-

npm flowise

Filter by Severity

High 9 Critical 9 Moderate 6