Vulnerability in Reconurge Flowsint

CVE-2026-42156

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a node with a malicious type that can escape an existing Cypher…

EPSS: 0.002 (39.8th percentile) — read the EPSS interpretation.

Affected products

Reconurge Flowsint — versions < 1.2.3

Weakness classification (CWE)

CWE-943 — Improper Neutralization of Special Elements in Data Query Logic

References

security-advisories@github.com (x_refsource_CONFIRM)