CVE-2026-4502 - Arbitrary File Write and Remote Code Execution Vulnerability in Langflow v2 API
CVE ID :CVE-2026-4502 Published : April 30, 2026, 9:16 p.m. | 44 minutes ago Description :IBM Langflow Desktop 1.2.0 through 1.8.4 Langflow could allow an authenticated attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" s
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Former incident responders sentenced to 4 years in prison for committing ransomware attacks
- [CYBER] New Linux 'Copy Fail' Vulnerability Enables Root Access On Major Distros
- [CYBER] Email security help - KnowBe4 vs Abnormal/Sublime?
- [CYBER] 'It quickly becomes an efficient and economically feasible solution': This wild saltwater hack could make data centers cooler, cheaper, and unexpectedly water-positive
- [CYBER] CVE-2026-1577 - IBM® Db2® is vulnerable to a denial of service with a specially crafted query involving multiple subqueries
- [CYBER] CVE-2025-36122 - IBM® Db2® is vulnerable to a denial of service with a specially crafted query when stmtheap is set to automatic