Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/05/26 12:0 a.m.15 views

PT-2026-43620

Name of the Vulnerable Software and Affected Versions radvd versions prior to 2.21 Description The radvdump utility contains a stack buffer overflow in the Route Information option parser. When processing a crafted ICMPv6 Router Advertisement, the print ff function copies up to 2032 bytes of...

7.7CVSS6.1AI score0.00155EPSS
Exploits0References12
Snyk
Snykadded 2026/05/14 4:19 p.m.8 views

Improperly Controlled Modification of Dynamically-Determined Object Attributes

Overview flowise is a Flowiseai Server Affected versions of this package are vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes in the Object.assign process. An attacker can gain unauthorized access to and control over data across different workspaces by...

7.6CVSS5.8AI score0.00342EPSS
Exploits0References2
Circl
Circladded 2026/05/14 2:17 p.m.5 views

CVE-2026-46476

creationtimestamp| type| source ---|---|--- 2026-05-14 14:17:36+00:00| published-proof-of-concept| https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-728h-4mwj-f2p4 2026-06-08 17:11:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mns6gihbi32r...

8.8CVSS5.3AI score0.00335EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/06 2:15 p.m.7 views

CVE-2026-8028 FlowiseAI Flowise Endpoint account.service.ts verify information disclosure

A vulnerability was detected in FlowiseAI Flowise up to 3.0.12. This affects the function verify of the file packages/server/src/enterprise/services/account.service.ts of the component Endpoint. Performing a manipulation results in information disclosure. Remote exploitation of the attack is...

6.3CVSS5.2AI score0.00401EPSS
Exploits1References4
GithubExploit
GithubExploitadded 2026/04/15 12:47 p.m.225 views

Exploit for Code Injection in Flowiseai Flowise

CVE-2025-59528 — Flowise AI Authenticated Remote Code Executio...

10CVSS6.4AI score0.90183EPSS
Exploits28
GithubExploit
GithubExploitadded 2026/04/15 11:54 a.m.140 views

Exploit for Missing Authentication for Critical Function in Flowiseai Flowise

Flowise-CVE-2025-58434-PasswordReset Unauthenticated...

9.8CVSS5.8AI score0.50118EPSS
Exploits13
Positive Technologies
Positive Technologiesadded 2025/10/06 12:0 a.m.4 views

PT-2025-40908

Name of the Vulnerable Software and Affected Versions Flowise version 3.0.7 Description Flowise, a drag & drop user interface for building customized large language model flows, contains a file upload issue. Authenticated users can upload arbitrary files without proper validation, enabling...

8.3CVSS7AI score0.10182EPSS
Exploits2References15
Packet Storm
Packet Stormadded 2024/04/19 12:0 a.m.164 views

Flowise 1.6.5 Authentication Bypass

Exploit Title: Flowise 1.6.5 - Authentication Bypass Date: 17-April-2024 Exploit Author: Maerifat Majeed Vendor Homepage: https://flowiseai.com/ Software Link: https://github.com/FlowiseAI/Flowise/releases Version: 1.6.5 Tested on: mac-os CVE : CVE-2024-31621 The flowise version if...

6.8AI score0.59867EPSS
Exploits4
Rows per page
Query Builder