AI Security Threat Feed

Flowise: unauth API exposes plaintext API keys and tokens

GHSA-4jpm-cgx2-8h37

Auth Bypass Data Extraction Data Leakage Agent Framework API

flowise Patch: 3.1.0 CWE-200 5 ATLAS

Flowise: Mass Assignment allows cross-tenant org takeover

GHSA-48m6-ch88-55mj

8.1

Auth Bypass Data Extraction Privacy Violation Agent Framework API

flowise Patch: 3.1.0 CWE-20 5 ATLAS

CRITICAL

Flowise CSVAgent: RCE via Python code injection

GHSA-9wc7-mj3f-74xv

Code Execution Auth Bypass Agent Framework

flowise-components Patch: 3.1.0 CWE-94 5 ATLAS

Flowise: prompt injection RCE via AirtableAgent

GHSA-f228-chmx-v6j6

8.3

Prompt Injection Code Execution Data Extraction Agent Framework Plugin

flowise-components Patch: 3.1.0 CWE-94 6 ATLAS

Flowise: SSRF bypass enables cloud metadata access

GHSA-9hrv-gvrv-6gf2

Data Extraction Auth Bypass Privacy Violation Agent Framework

flowise-components Patch: 3.1.0 CWE-918 4 ATLAS

Flowise: SSRF bypass enables cloud credential theft

GHSA-qqvm-66q4-vf5c

Data Extraction Auth Bypass Agent Framework Plugin

flowise-components Patch: 3.1.0 CWE-918 5 ATLAS

Flowise: path traversal allows arbitrary file write via vector store

GHSA-w6v6-49gh-mc9w

Code Execution Auth Bypass Framework Agent RAG

flowise-components Patch: 3.1.0 CWE-22 4 ATLAS

Flowise: hardcoded default key enables JWT token forgery

GHSA-m7mq-85xj-9x33

5.6

Auth Bypass Data Extraction Agent API

flowise Patch: 3.1.0 CWE-798 4 ATLAS

Flowise: hardcoded session secret enables auth bypass

GHSA-2qqc-p94c-hxwh

5.6

Auth Bypass Data Extraction Agent Framework

flowise Patch: 3.1.0 CWE-798 5 ATLAS

Flowise: hardcoded JWT defaults enable full auth bypass

GHSA-cc4f-hjpj-g9p8

5.6

Auth Bypass Data Extraction Agent Framework

flowise Patch: 3.1.0 CWE-327 5 ATLAS

Flowise: unauthenticated SSO config exposes OAuth secrets

GHSA-6pcv-j4jx-m4vx

5.3

Auth Bypass Data Extraction Agent API

flowise Patch: 3.1.0 CWE-306 5 ATLAS

LOW

openclaw: TOCTOU race bypasses exec script preflight

GHSA-gj9q-8w99-mp8j

Auth Bypass Data Extraction Agent Plugin

openclaw Patch: 2026.4.10 CWE-367 4 4 ATLAS 1 incident

CRITICAL EXPLOIT AVAIL

Flowise: RCE via MCP stdio command injection

Code Execution Supply Chain Auth Bypass Agent Plugin Framework

flowise-components Patch: 3.1.0 CWE-78 7 ATLAS

HIGH EXPLOIT AVAIL

Keras: safe_mode bypass allows RCE via model deserialization

Supply Chain Code Execution Framework Model

keras Patch: 3.13.2 CWE-502 1.5K 4 ATLAS

n8n-mcp: unauthenticated HTTP endpoints enable DoS + recon

GHSA-75hx-xj24-mqrw

8.2

Auth Bypass DoS Data Leakage Agent Plugin

n8n-mcp Patch: 2.47.6 CWE-306 16 5 ATLAS

MEDIUM EXPLOIT AVAIL

langsmith: prototype pollution enables auth bypass, RCE

Supply Chain Auth Bypass Code Execution Framework Agent Plugin

langsmith Patch: 0.5.18 CWE-1321 2.6K 4 ATLAS

MEDIUM EXPLOIT AVAIL

rembg: path traversal exposes arbitrary files via HTTP API

Data Extraction Privacy Violation Inference API

rembg Patch: 2.0.75 CWE-22 1.2K 4 ATLAS

CRITICAL

PraisonAI: auth bypass enables browser session hijack

GHSA-8x8f-54wf-vv92

9.1

Auth Bypass Data Extraction Code Execution Agent Plugin

PraisonAI Patch: 4.5.139 CWE-306 1 5 ATLAS

CRITICAL

PraisonAI: RCE via malicious workflow YAML execution

GHSA-vc46-vw85-3wvm

9.8

Code Execution Supply Chain Agent Framework

PraisonAI Patch: 4.5.139 CWE-78 1 6 ATLAS

PraisonAI: untrusted tools.py import enables RCE

GHSA-g985-wjh9-qxxc

8.4