CVE-2026-41269 - Flowise: File Upload Validation Bypass in createAttachment
CVE ID :CVE-2026-41269 Published : April 23, 2026, 7:14 p.m. | 36 minutes ago Description :Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the Chatflow configuration file upload settings can be modified to allow the application/javascrip
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Attempted hack on my Microsoft account. Was it a VPN node?
- [CYBER] KelpDAO hack news: Aave leads DeFi bailout push after $292M crypto exploit - CoinDesk
- [CYBER] US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied
- [CYBER] Speaking Freely: Lizzie O'Shea
- [CYBER] Dragos: Despite AI use, new malware targeting water plants is ‘hype’
- [CYBER] Trump’s pick to run US cyber agency CISA asks to drop out