Lucene search
K

11 matches found

GithubExploit
GithubExploit
added 2026/05/12 7:20 p.m.99 views

Exploit for Cross-site Scripting in B3Log Siyuan

CVE-2026-33017 — Langflow Unauthenticated RCE Nuclei Template...

9.8CVSS7AI score0.98191EPSS
Exploits21
GithubExploit
GithubExploit
added 2026/04/13 6:33 p.m.108 views

Exploit for Code Injection in Langflow

🎯 FlowBreaker CVE-2026-33017 — HTB-Style Pentest Lab...

9.8CVSS6AI score0.98191EPSS
Exploits20
GithubExploit
GithubExploit
added 2026/04/12 3:44 p.m.139 views

Exploit for Code Injection in Langflow

CVE-2026-33017 - Langflow Unauthenticated RCE...

9.8CVSS6.3AI score0.98191EPSS
Exploits20
GithubExploit
GithubExploit
added 2026/04/08 6:56 a.m.130 views

Exploit for Eval Injection in Langflow

CVE-2026-33017 - Langflow Unauthenticated RCE...

9.8CVSS6.4AI score0.98191EPSS
Exploits20
GithubExploit
GithubExploit
added 2026/04/07 11:54 p.m.122 views

Exploit for Eval Injection in Langflow

CVE-2026-33017-Langflow-POC Proof-of-con...

9.8CVSS6AI score0.98191EPSS
Exploits20
Packet Storm
Packet Storm
added 2026/03/31 12:0 a.m.123 views

📄 Langflow 1.8.1 Remote Code Execution

This Metasploit auxiliary module scans Langflow instances for CVE-2026-33017, an unauthenticated remote code execution vulnerability affecting versions 1.8.1 and below. ================================================================================================================================...

9.8CVSS6.4AI score0.98191EPSS
Exploits20
GithubExploit
GithubExploit
added 2026/03/27 7:15 a.m.216 views

Exploit for Eval Injection in Langflow

CVE-2026-33...

9.8CVSS6AI score0.98191EPSS
Exploits20
CISA
CISA
added 2026/03/25 12:0 p.m.9 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-33017link is external Langflow Code Injection Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses...

9.8CVSS5.9AI score0.98191EPSS
In wildExploits20References6
The Hacker News
The Hacker News
added 2026/03/20 3:15 p.m.6 views

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

A critical security flaw impacting Langflow has come under active exploitation within 20 hours of public disclosure, highlighting the speed at which threat actors weaponize newly published vulnerabilities. The security defect, tracked as CVE-2026-33017 CVSS score: 9.3, is a case of missing...

9.8CVSS8.6AI score0.9999EPSS
Exploits52
VulnCheck KEV
VulnCheck KEV
added 2026/03/19 12:0 a.m.42 views

VulnCheck KEV: CVE-2026-33017

Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/buildpublictmp/flowid/flow endpoint allows building public flows without requiring authentication. When the optional data parameter is supplied, the endpoint uses...

9.8CVSS6.2AI score0.9999EPSS
In wildExploits52References8
Circl
Circl
added 2026/03/18 5:0 p.m.4 views

CVE-2026-33017

creationtimestamp| type| source ---|---|--- 2026-03-18 17:00:00+00:00| confirmed| https://medium.com/@aviral23/cve-2026-33017-how-i-found-an-unauthenticated-rce-in-langflow-by-reading-the-code-they-already-dc96cdce5896 2026-03-18 17:00:00+00:00| published-proof-of-concept|...

9.8CVSS7.4AI score0.98191EPSS
Exploits20References155
Rows per page
Query Builder