Vulnerabilities
Vulnerable Software
Flowiseai:  >> Flowise  >> 3.1.3  Security Vulnerabilities
Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that allows unauthenticated attackers to write arbitrary files to the filesystem. Attackers can exploit unsanitized fileName parameters with ../ sequences to overwrite critical files like package.json and achieve remote code execution when the application restarts.
CVSS Score
10.0
EPSS Score
0.006
Published
2026-06-25


Contact Us

Shodan ® - All rights reserved