Vulnerability in N/a
CVE-2025-26319
FlowiseAI Flowise v2.2.6 was discovered to contain an arbitrary file upload vulnerability in /api/v1/attachments.
EPSS: 0.877 (99.5th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
Public proof-of-concept exploits
References
Frequently asked questions
- What is CVE-2025-26319?
- CVE-2025-26319 is a vulnerability in N/a. Published 2025-03-04.
- Is CVE-2025-26319 known to be exploited?
- 8 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.