CVE-2025-26319

Published Mar 4, 2025

Last updated 10 months ago

CVSS critical 9.8
Flowise

Overview

Description
FlowiseAI Flowise v2.2.6 was discovered to contain an arbitrary file upload vulnerability in /api/v1/attachments.
Source
cve@mitre.org
NVD status
Analyzed
Products
flowise

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-434

Social media

Hype score
Not currently trending

  1. ⚠️ **Vulnerability Alert:** Flowise — Critical RCE & related vulnerabilities (CVE-2025-59528, CVE-2025-8943, CVE-2025-26319) 📅 **Timeline:** Disclosure: 2025-03-04; Patch: 2025-09-15 🆔 **CVE-2025-59528** | 📊 CVSS: 10.0 (CRITICAL 🔴) | 📈 EPSS: 99.224% 🆔

    @syedaquib77

    7 Apr 2026

    127 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. ⚠️ **Vulnerability Alert:** Flowise — Multiple critical RCE and unsafe input handling vulnerabilities (CVE-2025-59528, CVE-2025-8943, CVE-2025-26319) 📅 **Timeline:** Disclosure: 2025-09-22, Patch: 2025-09-23 🆔 **CVE-2025-59528** | 📊 CVSS: 10.0 (CRITICAL 🔴) |

    @syedaquib77

    7 Apr 2026

    150 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-26319 Upload Arbitrário de Arquivos no Flowise (v2.5) – CVSS 9.8 Crítico #lost32x #CyberSecurity https://t.co/2Kgyd2KIDA

    @lost32x_

    22 Sept 2025

    73 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🔴 FlowiseAI #Flowise v226, Arbitrary File Upload Vulnerability, #CVE-2025-26319 (Critical) https://t.co/RXmIlMyz6s

    @dailycve

    24 Jun 2025

    24 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Actively exploited CVE : CVE-2025-26319

    @transilienceai

    3 Apr 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  6. Actively exploited CVE : CVE-2025-26319

    @transilienceai

    31 Mar 2025

    16 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  7. CVE-2025-26319: FlowiseAI Flowise v2.2.6 was discovered to contain an arbitrary file upload vulnerability in /api/v1/attachments. https://t.co/K37e3FihTt https://t.co/RJsX1OK4ta

    @cyber_advising

    13 Mar 2025

    507 Impressions

    1 Retweet

    6 Likes

    3 Bookmarks

    0 Replies

    0 Quotes

  8. GitHub - YuoLuo/CVE-2025-26319 - https://t.co/uTWhSwh56O

    @piedpiper1616

    13 Mar 2025

    2990 Impressions

    18 Retweets

    51 Likes

    13 Bookmarks

    1 Reply

    0 Quotes

  9. A severe vulnerability (CVE-2025-26319) in the Flowise platform allows file uploads by unauthenticated users, risking remote code execution. Ensure proper mitigation measures are taken. ⚠️ #Flowise #OpenSource #USA link: https://t.co/sOVXjwOQXI https://t.co/0b3kASeGZR

    @TweetThreatNews

    13 Mar 2025

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. Follow @zoomeye_team & Get 7-Day Membership! 🚨🚨CVE-2025-26319 drops: Flowise hit with a pre-auth arbitrary file upload vuln! ⚠️This is BIG—think total agent framework compromise, remote server takeover, or data theft. The stakes? Sky-high. 🔥PoC: https://t.co/ikyG2O5VkQ… h

    @zoomeye_team

    13 Mar 2025

    536 Impressions

    0 Retweets

    3 Likes

    2 Bookmarks

    1 Reply

    0 Quotes

  11. ⚠️⚠️ CVE-2025-26319 (CVSS 9.8): Flowise Open-Source Platform Vulnerable to File Upload Exploit, No Patch 🎯20k+ Results are found on the https://t.co/pb16tGYaKe nearly year. 🔥PoC: https://t.co/h25MAaXXpe 🔗FOFA Link: https://t.co/84YBAUcpxx FOFA Query:app="FlowiseAI"… https:

    @fofabot

    13 Mar 2025

    2496 Impressions

    4 Retweets

    40 Likes

    17 Bookmarks

    0 Replies

    0 Quotes

  12. 🚨Alert🚨 CVE-2025-26319 (CVSS 9.8):An arbitrary file upload vulnerability in FlowiseAI Flowise v2.2.6 🧐Deep Dive :https://t.co/Ti99YZxXho 📊 35K+ Services are found on the https://t.co/ysWb28Crld yearly. 🔗Hunter Link:https://t.co/q2FFmyclXL 👇Query HUNTER :… https://t.co/WWQAs

    @HunterMapping

    13 Mar 2025

    4097 Impressions

    23 Retweets

    71 Likes

    32 Bookmarks

    1 Reply

    0 Quotes

  13. CVE-2025-26319 (CVSS 9.8): Flowise Open-Source Platform Vulnerable to File Upload Exploit, No Patch Explore the critical CVE-2025-26319 vulnerability in Flowise that allows attackers to exploit file uploads and compromise servers. https://t.co/em8EpG63rL

    @the_yellow_fall

    13 Mar 2025

    481 Impressions

    4 Retweets

    9 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. Flowise users, heads up! A critical flaw puts your servers at risk. Critical Flowise vulnerability (CVE-2025-26319) allows unauthenticated arbitrary file uploads, risking server control. TL;DR: • Flowise platform has a critical file upload vulnerability. • Attackers can… http

    @TweekFawkes

    11 Mar 2025

    59 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  15. CVE-2025-26319 03/04/2025 10:15:40 PM BaseSeverity: CRITICAL FlowiseAI Flowise v2.2.6 was discovered to contain an arbitrary file upload vulnerability in /api/v1/attachments. https://t.co/Z0p0diPVDu

    @CVETracker

    5 Mar 2025

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.0.13, Flowise exposes an HTTP Node in AgentFlow and Chatflow that performs server-side HTTP requests using user-controlled URLs. By default, there are no restrictions on target hosts, including private/internal IP ranges (RFC 1918), localhost, or cloud metadata endpoints. This enables Server-Side Request Forgery (SSRF), allowing any user interacting with a publicly exposed chatflow to force the Flowise server to make requests to internal network resources that are inaccessible from the public internet. This vulnerability is fixed in 3.0.13.CVE-2026-31829
  2. Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, the NVIDIA NIM router (/api/v1/nvidia-nim/*) is whitelisted in the global authentication middleware, allowing unauthenticated access to privileged container management and token generation endpoints. This issue has been patched in version 3.0.13.CVE-2026-30824
  3. Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, there is an IDOR vulnerability, leading to account takeover and enterprise feature bypass via SSO configuration. This issue has been patched in version 3.0.13.CVE-2026-30823
  4. Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, unauthenticated users can inject arbitrary values into internal database fields when creating leads. This issue has been patched in version 3.0.13.CVE-2026-30822
  5. Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, the /api/v1/attachments/:chatflowId/:chatId endpoint is listed in WHITELIST_URLS, allowing unauthenticated access to the file upload API. While the server validates uploads based on the MIME types defined in chatbotConfig.fullFileUpload.allowedUploadFileTypes, it implicitly trusts the client-provided Content-Type header (file.mimetype) without verifying the file's actual content (magic bytes) or extension (file.originalname). Consequently, an attacker can bypass this restriction by spoofing the Content-Type as a permitted type (e.g., application/pdf) while uploading malicious scripts or arbitrary files. Once uploaded via addArrayFilesToStorage, these files persist in backend storage (S3, GCS, or local disk). This vulnerability serves as a critical entry point that, when chained with other features like static hosting or file retrieval, can lead to Stored XSS, malicious file hosting, or Remote Code Execution (RCE). This issue has been patched in version 3.0.13.CVE-2026-30821

References

Sources include official advisories and independent security research.