CVE-2025-59527
published 2025-09-22CVE-2025-59527: Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5, a Server-Side Request Forgery (SSRF) vulnerability…
PriorityP356high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
4.63%
90.6th percentile
Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5, a Server-Side Request Forgery (SSRF) vulnerability was discovered in the /api/v1/fetch-links endpoint of the Flowise application. This vulnerability allows an attacker to use the Flowise server as a proxy to access internal network web services and explore their link structures. This issue has been patched in version 3.0.6.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| flowiseai | flowise | — | — |
| flowiseai | flowise | — | — |
| flowiseai | flowise | >= 3.0.5 < 3.0.6 | 3.0.6 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
osv·2025-09-15
CVE-2025-59527 [HIGH] FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
### Summary
---
A Server-Side Request Forgery (SSRF) vulnerability was discovered in the `/api/v1/fetch-links` endpoint of the Flowise application. This vulnerability allows an attacker to use the Flowise server as a proxy to access internal network web services and explore their link structures. The impact includes the potential exposure of sensitive internal administrative endpoints.
### Details
---
#### Vulnerability Overview
The `fetch-links` feature in Flowise is designed to extract links from external websites or XML sitemaps. It performs an HTTP request from the server to the user-supplied URL and parses the response (HTML or XML) to extract and return links.
The issue arises because the feature performs t
GHSA
FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
ghsa·2025-09-15
CVE-2025-59527 [HIGH] CWE-918 FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
### Summary
---
A Server-Side Request Forgery (SSRF) vulnerability was discovered in the `/api/v1/fetch-links` endpoint of the Flowise application. This vulnerability allows an attacker to use the Flowise server as a proxy to access internal network web services and explore their link structures. The impact includes the potential exposure of sensitive internal administrative endpoints.
### Details
---
#### Vulnerability Overview
The `fetch-links` feature in Flowise is designed to extract links from external websites or XML sitemaps. It performs an HTTP request from the server to the user-supplied URL and parses the response (HTML or XML) to extract and return links.
The issue arises because the feature performs t
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/FlowiseAI/Flowise/blob/5930f1119c655bcf8d2200ae827a1f5b9fec81d0/packages/components/src/utils.ts#L474-L478https://github.com/FlowiseAI/Flowise/blob/5930f1119c655bcf8d2200ae827a1f5b9fec81d0/packages/server/src/controllers/fetch-links/index.ts#L6-L24https://github.com/FlowiseAI/Flowise/blob/5930f1119c655bcf8d2200ae827a1f5b9fec81d0/packages/server/src/services/fetch-links/index.ts#L8-L18https://github.com/FlowiseAI/Flowise/releases/tag/flowise%403.0.6https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-hr92-4q35-4j3m
2025-09-22
Published