CVE-2025-58434
published 2025-09-12CVE-2025-58434: Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5 and earlier, the `forgot-password` endpoint in…
PriorityP183critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
50.12%
98.8th percentile
Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5 and earlier, the `forgot-password` endpoint in Flowise returns sensitive information including a valid password reset `tempToken` without authentication or verification. This enables any attacker to generate a reset token for arbitrary users and directly reset their password, leading to a complete account takeover (ATO). This vulnerability applies to both the cloud service (`cloud.flowiseai.com`) and self-hosted/local Flowise deployments that expose the same API. Commit 9e178d68873eb876073846433a596590d3d9c863 in version 3.0.6 secures password reset endpoints. Several recommended remediation steps are available. Do not return reset tokens or sensitive account details in API responses. Tokens must only be delivered securely via the registered email channel. Ensure `forgot-password` responds with a generic success message regardless of input, to avoid user enumeration. Require strong validation of the `tempToken` (e.g., single-use, short expiry, tied to request origin, validated against email delivery). Apply the same fixes to both cloud and self-hosted/local deployments. Log and monitor password reset requests for suspicious activity. Consider multi-factor verification for sensitive accounts.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| flowiseai | flowise | < 3.0.6 | 3.0.6 |
| flowiseai | flowise | <= 3.0.5 | — |
| flowiseai | flowise | >= 0 < 3.0.6 | 3.0.6 |
Detection & IOCsextracted from sources · hover to see the quote
snort
alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS Flowise Unauthenticated Account Takeover via tempToken (CVE-2025-58434)"; flow:established,to_server; http.uri; content:"/api/v1/account/forgot-password"; fast_pattern; http.request_body; content:"|22|user|22 3a|"; content:"|22|email|22 3a|"; distance:0; http.method; content:"POST"; reference:url,github.com/advisories/GHSA-wgpv-6j63-x5ph; reference:cve,2025-58434; classtype:web-application-attack; sid:2065964; rev:1; metadata:affected_product Flowise, attack_target Server, tls_state TLSDecrypt, created_at 2025_12_01, cve CVE_2025_58434, deployment Perimeter, deployment Internal, deployment SSLDecrypt, confidence High, signature_severity Major, tag Exploit, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2025_12_01, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique_id T1190, mitre_technique_name Exploit_Public_Facing_Application; target:dest_ip;)
yara↗
regex: '"tempToken":"([A-Za-z0-9]{64})"'- →Monitor for unauthenticated POST requests to /api/v1/account/forgot-password that return HTTP 201 with a JSON body containing a 'tempToken' field — this indicates the vulnerable endpoint is leaking reset tokens directly in the response. ↗
- →Alert on sequential POST requests to /api/v1/account/forgot-password followed immediately by /api/v1/account/reset-password and then /api/v1/auth/login from the same source IP — this three-step chain is the complete account takeover exploit flow. ↗
- →Inspect HTTP 201 responses from /api/v1/account/forgot-password for a JSON key 'tempToken' containing a 64-character alphanumeric string — presence of this field in the response body confirms exploitation of the vulnerability. ↗
- →Use the Shodan query 'http.title:"Flowise - Build AI Agents, Visually"' to identify internet-exposed Flowise instances that may be vulnerable. ↗
- →Verify successful account takeover by checking if the /api/v1/auth/login response body contains both the target email and the field 'activeWorkspaceId' — this confirms the attacker has successfully authenticated with the reset password. ↗
- ·The vulnerability affects both cloud-hosted (cloud.flowiseai.com) and self-hosted/local Flowise deployments equally — detection and patching must be applied to all deployment types. ↗
- ·The fix is present only in version 3.0.6+; all instances running 3.0.5 and earlier are vulnerable. Confirm the patched commit (9e178d68873eb876073846433a596590d3d9c863) is present before trusting a deployment as remediated. ↗
- ·The exploit requires only a known or guessable registered email address — no credentials or prior authentication are needed, making the attack trivially scriptable against any exposed instance. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
osv·2025-09-12
CVE-2025-58434 [CRITICAL] Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
### Summary
The `forgot-password` endpoint in Flowise returns sensitive information including a valid password reset `tempToken` without authentication or verification. This enables any attacker to generate a reset token for arbitrary users and directly reset their password, leading to a complete **account takeover (ATO)**.
This vulnerability applies to **both the cloud service (`cloud.flowiseai.com`) and self-hosted/local Flowise deployments** that expose the same API.
**CVSS v3.1 Base Score:** **9.8 (Critical)**
**Vector String:** `CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H`
---
### Details
* The endpoint `/api/v1/account/forgot-password` accepts an email addre
GHSA
Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
ghsa·2025-09-12
CVE-2025-58434 [CRITICAL] CWE-306 Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
### Summary
The `forgot-password` endpoint in Flowise returns sensitive information including a valid password reset `tempToken` without authentication or verification. This enables any attacker to generate a reset token for arbitrary users and directly reset their password, leading to a complete **account takeover (ATO)**.
This vulnerability applies to **both the cloud service (`cloud.flowiseai.com`) and self-hosted/local Flowise deployments** that expose the same API.
**CVSS v3.1 Base Score:** **9.8 (Critical)**
**Vector String:** `CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H`
---
### Details
* The endpoint `/api/v1/account/forgot-password` accepts an email addre
Suricata
ET WEB_SPECIFIC_APPS Flowise Unauthenticated Account Takeover via tempToken (CVE-2025-58434)
suricata·2025-12-01·CVSS 9.8
CVE-2025-58434 [CRITICAL] ET WEB_SPECIFIC_APPS Flowise Unauthenticated Account Takeover via tempToken (CVE-2025-58434)
ET WEB_SPECIFIC_APPS Flowise Unauthenticated Account Takeover via tempToken (CVE-2025-58434)
Rule: alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS Flowise Unauthenticated Account Takeover via tempToken (CVE-2025-58434)"; flow:established,to_server; http.uri; content:"/api/v1/account/forgot-password"; fast_pattern; http.request_body; content:"|22|user|22 3a|"; content:"|22|email|22 3a|"; distance:0; http.method; content:"POST"; reference:url,github.com/advisories/GHSA-wgpv-6j63-x5ph; reference:cve,2025-58434; classtype:web-application-attack; sid:2065964; rev:1; metadata:affected_product Flowise, attack_target Server, tls_state TLSDecrypt, created_at 2025_12_01, cve CVE_2025_58434, deployment Perimeter, deployment Internal, deployment SSLDecrypt, confidence High, signature_s
Exploit-DB
Flowise < 3.0.5 - Missing Authentication for Critical Function
exploitdb·2026-05-13·CVSS 9.8
CVE-2025-58434 [CRITICAL] Flowise < 3.0.5 - Missing Authentication for Critical Function
Flowise < 3.0.5 - Missing Authentication for Critical Function
---
# Exploit Title: Flowise < 3.0.5 - Missing Authentication for Critical Function
# Date: 10/11/2025
# Exploit Author: [nltt0] (https://github.com/nltt-br))
# Vendor Homepage: https://flowiseai.com/
# Software Link: https://github.com/FlowiseAI/Flowise
# Version: < 3.0.5
# CVE: CVE-2025-58434
from requests import post
from argparse import ArgumentParser
banner = r"""
_____ _ _____
/ __ \ | | / ___|
| / \/ __ _| | __ _ _ __ __ _ ___ ___ \ `--.
| | / _` | |/ _` | '_ \ / _` |/ _ \/ __| `--. \
| \__/\ (_| | | (_| | | | | (_| | (_) \__ \/\__/ /
\____/\__,_|_|\__,_|_| |_|\__, |\___/|___/\____/
__/ |
|___/
by nltt0
"""
print(banner)
try:
parser = ArgumentParser(description='CVE-2025-58434 [FlowiseAI < 3.0.5]', usage="python C
Exploit-DB
Flowise 3.0.4 - Remote Code Execution (RCE)
exploitdb·2025-10-31·CVSS 9.8
CVE-2025-59528 [CRITICAL] Flowise 3.0.4 - Remote Code Execution (RCE)
Flowise 3.0.4 - Remote Code Execution (RCE)
---
# Exploit Title: Flowise 3.0.4 - Remote Code Execution (RCE)
# Date: 10/11/2025
# Exploit Author: [nltt0] (https://github.com/nltt-br))
# Vendor Homepage: https://flowiseai.com/
# Software Link: https://github.com/FlowiseAI/Flowise
# Version: < 3.0.5
# CVE: CVE-2025-59528
from requests import post, session
from argparse import ArgumentParser
banner = r"""
_____ _ _____
/ __ \ | | / ___|
| / \/ __ _| | __ _ _ __ __ _ ___ ___ \ `--.
| | / _` | |/ _` | '_ \ / _` |/ _ \/ __| `--. \
| \__/\ (_| | | (_| | | | | (_| | (_) \__ \/\__/ /
\____/\__,_|_|\__,_|_| |_|\__, |\___/|___/\____/
__/ |
|___/
by nltt0
"""
try:
parser = ArgumentParser(description='CVE-2025-59528 [Flowise < 3.0.5]', usage="python CVE-2025-58434.py --email xtz@local --password
Nuclei
Flowise <= 3.0.5 - Account Takeover
nuclei·CVSS 9.8
CVE-2025-58434 [CRITICAL] Flowise <= 3.0.5 - Account Takeover
Flowise <= 3.0.5 - Account Takeover
Flowise versions 3.0.5 and earlier had a vulnerability in the forgot-password endpoint, which returned valid reset tokens without authentication—allowing attackers to reset passwords and take over accounts.
Template:
id: CVE-2025-58434
info:
name: Flowise <= 3.0.5 - Account Takeover
author: nukunga[seunghyeonJeon]
severity: critical
description: |
Flowise versions 3.0.5 and earlier had a vulnerability in the forgot-password endpoint, which returned valid reset tokens without authentication—allowing attackers to reset passwords and take over accounts.
impact: |
Unauthenticated attackers can obtain valid password reset tokens without authentication, enabling account takeover of any user including administrators through password reset attacks.
remediati
2025-09-12
Published