| CVE-2026-46480 |
high |
— |
8.0 |
14d ago |
FlowiseAI: Evaluator create+update mass-assignment allows cross-workspace evaluator takeover |
|
| CVE-2026-46479 |
high |
— |
8.0 |
14d ago |
FlowiseAI: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover |
|
| CVE-2026-46478 |
high |
— |
8.0 |
14d ago |
FlowiseAI: DatasetRow create+update mass-assignment allows cross-workspace row takeover |
|
| CVE-2026-46477 |
high |
— |
8.0 |
14d ago |
FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover |
|
| CVE-2026-46476 |
high |
— |
8.0 |
14d ago |
FlowiseAI: CustomTemplate create+update mass-assignment allows cross-workspace template takeover |
|
| CVE-2026-46475 |
high |
— |
8.0 |
14d ago |
FlowiseAI: Assistant create+update mass-assignment allows cross-workspace assistant takeover |
|
| CVE-2026-46444 |
high |
— |
8.0 |
14d ago |
FlowiseAI: Vector Store No Permission Checks |
|
| CVE-2026-46443 |
high |
— |
8.0 |
14d ago |
FlowiseAI Vulnerable to Credential Data Leak |
|
| CVE-2026-46441 |
high |
— |
8.0 |
14d ago |
FlowiseAI has Mass Assignment in Assistant Update Endpoint that Allows Cross-Workspace Resource Reassignment |
|
| CVE-2026-46440 |
high |
— |
8.0 |
14d ago |
FlowiseAI Exposes Basic Auth Credentials via API |
|
| CVE-2026-42863 |
high |
— |
8.0 |
14d ago |
FlowiseAI has Mass Assignment in Chatflow Update Endpoint that Allows Cross-Workspace AgentFlow Reassignment |
|
| CVE-2026-42862 |
high |
— |
8.0 |
14d ago |
FlowiseAI has Mass Assignment in Tool Update Endpoint that Allows Cross-Workspace Resource Reassignment |
|
| CVE-2026-42861 |
high |
— |
8.0 |
14d ago |
FlowiseAI has Mass Assignment in Variable Update Endpoint that Allows Cross-Workspace Resource Reassignment |
|
| CVE-2026-8026 |
medium |
5.3 |
5.3 |
22d ago |
Flowise: Bcrypt Password Hash Exposure |
|