CVE-2026-6599 - langflow-ai langflow Model Context Protocol Configuration API mcp_projects.py install_mcp_config injection
CVE ID :CVE-2026-6599 Published : April 20, 2026, 3 a.m. | 1 hour, 42 minutes ago Description :A vulnerability was detected in langflow-ai langflow up to 1.8.3. The impacted element is the function get_client_ip/install_mcp_config of the file src/backend/base/langflow/api/v1/mcp_projects.py of
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Mini RSA picoCTF Writeup
- [CYBER] Navy tells sailors to ‘beware’ of dating apps, button-up social media amid Iran conflict
- [CYBER] Project Glasswing and the Next Challenge for Defenders: Turning Faster Discovery into Faster Action
- [CYBER] How to Prevent Email Leaks When Sharing Collaborative Docs Publicly
- [CYBER] Türkiye to boost virtual patrols, strengthen cyber law enforcement
- [CYBER] CVE-2026-25883 - Vexa Webhook Feature has a SSRF Vulnerability