Lucene search
K

34 matches found

EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40433

Flowise before 3.1.0 affected versions 3.0.13 and earlier uses a weak hardcoded default secret 'flowise' for the express-session middleware when the EXPRESSSESSIONSECRET environment variable is not set packages/server/src/enterprise/middleware/passport/index.ts. Because this default secret is...

9.3CVSS5.8AI score0.0036EPSS
Exploits0References3
NVD
NVD
added 2026/06/30 11:17 p.m.7 views

CVE-2026-56278

Flowise before 3.1.0 affected versions 3.0.13 and earlier uses a weak hardcoded default secret 'flowise' for the express-session middleware when the EXPRESSSESSIONSECRET environment variable is not set packages/server/src/enterprise/middleware/passport/index.ts. Because this default secret is...

9.3CVSS0.0036EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/30 10:8 p.m.30 views

CVE-2026-56278 Flowise - Session Hijacking via Weak Default Express Session Secret

Flowise before 3.1.0 affected versions 3.0.13 and earlier uses a weak hardcoded default secret 'flowise' for the express-session middleware when the EXPRESSSESSIONSECRET environment variable is not set packages/server/src/enterprise/middleware/passport/index.ts. Because this default secret is...

9.3CVSS0.0036EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:8 p.m.17 views

CVE-2026-56278

Flowise before 3.1.0 (affected: 3.0.13 and earlier) uses a weak hardcoded default session secret ('flowise') for express-session when EXPRESS_SESSION_SECRET is not set (packages/server/src/enterprise/middleware/passport/index.ts). Because the secret is publicly visible in the source, an attacker ...

9.3CVSS5.8AI score0.0036EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/30 10:8 p.m.7 views

CVE-2026-56278

Flowise before 3.1.0 affected versions 3.0.13 and earlier uses a weak hardcoded default secret 'flowise' for the express-session middleware when the EXPRESSSESSIONSECRET environment variable is not set packages/server/src/enterprise/middleware/passport/index.ts. Because this default secret is...

9.3CVSS5.8AI score0.0036EPSS
Exploits0References3
OSV
OSV
added 2026/04/16 9:22 p.m.7 views

GHSA-2QQC-P94C-HXWH Flowise: Weak Default Express Session Secret

Detection Method: Kolega.dev Deep Code Scan | Attribute | Value | |---|---| | Location | packages/server/src/enterprise/middleware/passport/index.ts:55 | | Practical Exploitability | High | | Developer Approver | [email protected] | Description Express session secret has a weak default value...

5.6CVSS6AI score0.0036EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/16 9:22 p.m.5 views

Flowise: Weak Default Express Session Secret

Detection Method: Kolega.dev Deep Code Scan | Attribute | Value | |---|---| | Location | packages/server/src/enterprise/middleware/passport/index.ts:55 | | Practical Exploitability | High | | Developer Approver | [email protected] | Description Express session secret has a weak default value...

6AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/16 12:0 a.m.10 views

PT-2026-54029

Name of the Vulnerable Software and Affected Versions Flowise versions 3.0.13 and earlier Description The software uses a weak hardcoded default secret 'flowise' for the express-session middleware when the EXPRESS SESSION SECRET environment variable is not set. Since this secret is publicly visib...

9.3CVSS6.2AI score0.0036EPSS
Exploits0References8
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/06 4:7 p.m.8 views

Malicious code in request-js-validator (npm)

Copy of 'request' library with injected payload. Spawns detached child process that fetches stage-2 and executes via new Function.constructor'require', payload. Same pattern as express-session-js. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...

5.9AI score
Exploits0References2
OSV
OSV
added 2026/04/06 4:7 p.m.5 views

MAL-2026-2526 Malicious code in request-js-validator (npm)

Copy of 'request' library with injected payload. Spawns detached child process that fetches stage-2 and executes via new Function.constructor'require', payload. Same pattern as express-session-js. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...

5.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/02 9:56 a.m.6 views

Malicious code in express-session-js (npm)

Package impersonates legitimate express-session package; initPlugin downloads and executes attacker-controlled remote code on startup via new Function.constructor --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...

6.2AI score
Exploits0References2
OSV
OSV
added 2026/04/02 9:56 a.m.4 views

MAL-2026-2419 Malicious code in express-session-js (npm)

Package impersonates legitimate express-session package; initPlugin downloads and executes attacker-controlled remote code on startup via new Function.constructor --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...

6.2AI score
Exploits0References2
OSV
OSV
added 2026/03/24 1:31 p.m.9 views

MAL-2026-2129 Malicious code in express-session-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3beac16c32c8776482bafbb2ad95b50b7b18bf6e93fbf712238f60a4d7ae363d The package express-session-validator was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/24 1:31 p.m.7 views

Malicious code in express-session-vailidator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 559c32a7f4713a1d785b35766355cf1a29ef437a0dc8e5285b980c9611175cff The package express-session-vailidator was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/24 1:31 p.m.9 views

Malicious code in express-session-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3beac16c32c8776482bafbb2ad95b50b7b18bf6e93fbf712238f60a4d7ae363d The package express-session-validator was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
Snyk
Snyk
added 2026/03/24 1:31 p.m.6 views

Malicious Package

Overview express-session-vailidator is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.8AI score
Exploits0References2
Snyk
Snyk
added 2026/03/24 1:31 p.m.3 views

Malicious Package

Overview express-session-validator is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2026/03/24 1:31 p.m.11 views

MAL-2026-2128 Malicious code in express-session-vailidator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 559c32a7f4713a1d785b35766355cf1a29ef437a0dc8e5285b980c9611175cff The package express-session-vailidator was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
CNVD
CNVD
added 2025/10/15 12:0 a.m.4 views

Hospital Management System session function hard-coded key vulnerability

Hospital Management System a hospital management system. Hospital Management System has a hard-coded key vulnerability that arises from the incorrect manipulation of the secret parameter by the session function in the express-session component, for which no detailed vulnerability details are...

8.1CVSS6.8AI score0.00479EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/12 6:7 p.m.17 views

CVE-2025-11609

A flaw has been found in code-projects Hospital Management System 1.0. Affected is the function session of the component express-session. This manipulation of the argument secret with the input secret causes use of hard-coded cryptographic key . The attack can be initiated remotely. The attack is...

8.1CVSS6.5AI score0.00479EPSS
Exploits1References1
Rows per page
Query Builder