Vulnerability Database

296,278

Total vulnerabilities in the database

CVE-2025-26319

FlowiseAI Flowise v2.2.6 was discovered to contain an arbitrary file upload vulnerability in /api/v1/attachments.

Published: Mar 5, 2025
Updated: Aug 11, 2025
CVE: CVE-2025-26319
GHSA: GHSA-69jq-qr7w-j7qh
Severity: High
Exploit:

No technical information available.

CWEs:

CWE-434

Affected Software
References

Software	From	Fixed in
flowise	-	2.2.6.x
flowiseai / flowise	2.2.6	2.2.6.x