Flowise Vulnerabilities

npm AI Agents

AI Threat Alert tracks 117 known vulnerabilities in Flowise, 27 rated critical — an AI/ML ai agents in the npm ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
117
Total CVEs
27
Critical
npm
Ecosystem
Jul 8, 2026
Last CVE
43%
Patch Rate
3d
Avg Time to Patch

Known Vulnerabilities (117 total, page 3 of 5)

Severity CVE ID Summary CVSS Published
HIGH GHSA-php6-83fg-gw3g Flowise: brute-force auth grants full agent platform access 7.5 May 14, 2026 HIGH GHSA-m99r-2hxc-cp3q Flowise MCP: 3-path blocklist bypass enables server RCE -- May 14, 2026 HIGH GHSA-hp26-q66v-q2w7 Flowise: mass assignment breaks multi-tenant isolation -- May 14, 2026 CRITICAL GHSA-9rvc-vf7m-pgm2 Flowise: auth RCE via NodeVM sandbox escape -- May 14, 2026 HIGH GHSA-7g73-99r4-m4mj Flowise: credential data leak via filtered API endpoint -- May 14, 2026 LOW CVE-2026-8026 Flowise: info disclosure via login API response handler 3.7 May 6, 2026 CRITICAL CVE-2026-43995 Flowise: SSRF in agent tools bypasses security wrapper 9.8 May 11, 2026 CRITICAL CVE-2026-41274 Flowise: Cypher injection via GraphCypherQAChain node 9.8 Apr 23, 2026 HIGH CVE-2026-41279 Flowise: unauth API key abuse via TTS endpoint IDOR 7.5 Apr 23, 2026 HIGH CVE-2026-41278 Flowise: credential exposure in public chatflow API 7.5 Apr 23, 2026 HIGH CVE-2026-41277 Flowise: mass assignment enables cross-workspace IDOR 8.8 Apr 23, 2026 CRITICAL CVE-2026-41276 Flowise: auth bypass enables full account takeover via reset 9.8 Apr 23, 2026 HIGH CVE-2026-41275 Flowise: HTTP password reset link allows MITM takeover 7.5 Apr 23, 2026 HIGH CVE-2026-41273 Flowise: auth bypass exposes OAuth 2.0 tokens 8.2 Apr 23, 2026 HIGH CVE-2026-41272 Flowise: SSRF bypass via DNS rebinding exposes internal networks 7.1 Apr 23, 2026 HIGH CVE-2026-41271 Flowise: SSRF via prompt template injection in API Chain 8.3 Apr 23, 2026 HIGH CVE-2026-41270 Flowise: SSRF bypass exposes cloud metadata services 8.3 Apr 23, 2026 HIGH CVE-2026-41269 Flowise: unrestricted file upload enables persistent RCE 8.8 Apr 23, 2026 CRITICAL CVE-2026-41268 Flowise: unauthenticated RCE via NODE_OPTIONS env injection 9.8 Apr 23, 2026 CRITICAL CVE-2026-41267 Flowise: mass assignment auth bypass in registration 9.8 Apr 23, 2026 HIGH CVE-2026-41266 Flowise: unauthenticated API key exposure via chatbot config 7.5 Apr 23, 2026 CRITICAL CVE-2026-41265 Flowise: RCE via prompt injection in Airtable Agent 9.8 Apr 23, 2026 HIGH CVE-2026-41138 Flowise: RCE via unsanitized input in AirtableAgent 8.8 Apr 23, 2026 HIGH CVE-2026-41137 Flowise: RCE via CSVAgent unsanitized code injection 8.8 Apr 23, 2026 CRITICAL CVE-2026-41264 Flowise: prompt injection → unsandboxed RCE via CSV Agent 9.8 Apr 21, 2026

Showing 51–75 of 117

Frequently asked questions

What is Flowise?

Flowise is an AI/ML ai agents tracked by AI Threat Alert for security vulnerabilities in the npm ecosystem.

How many known vulnerabilities does Flowise have?

Flowise has 117 known CVEs, 27 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is Flowise distributed in?

Flowise is distributed via the npm ecosystem and categorized as ai agents.

Where does the Flowise vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of Flowise?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor Flowise in your stack

Get instant alerts when new vulnerabilities affect Flowise. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring