AI Threat Alert

Flowise Vulnerabilities

npm AI Agents
80
Total CVEs
16
Critical
npm
Ecosystem
May 20, 2026
Last CVE
61%
Patch Rate
1d
Avg Time to Patch

Known Vulnerabilities (80 total, page 4 of 4)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2024-37145 Flowise: reflected XSS enables file read chain via chatflow 6.1 Jul 1, 2024 MEDIUM CVE-2024-36423 Flowise: reflected XSS in chatflow API enables session hijack 6.1 Jul 1, 2024 MEDIUM CVE-2024-36422 Flowise: reflected XSS enables session hijack and file read 6.1 Jul 1, 2024 HIGH CVE-2024-36421 Flowise: CORS wildcard enables file read and data theft 7.5 Jul 1, 2024 HIGH CVE-2024-36420 Flowise: unauthenticated arbitrary file read via API 7.5 Jul 1, 2024

Showing 76–80 of 80

← Previous

Monitor Flowise in your stack

Get instant alerts when new vulnerabilities affect Flowise. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring