CVE-2026-43995
published 2026-05-11CVE-2026-43995: Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, multiple tool implementations directly import and…
PriorityP354critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.40%
31.4th percentile
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, multiple tool implementations directly import and invoke raw HTTP clients (node-fetch, axios) instead of using the secured wrapper. These tools include (1) OpenAPIToolkit/OpenAPIToolkit.ts, (2) WebScraperTool/WebScraperTool.ts, (3) MCP/core.ts, and (4) Arxiv/core.ts. This vulnerability is fixed in 3.1.0.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| flowiseai | flowise | < 3.1.0 | 3.1.0 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv4.05.3MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
FlowiseAI Flowise up to 3.0.12 Custom MCP validateMCPServerConfig server-side request forgery
vuldb·2026-05-21·CVSS 5.3
CVE-2026-43995 [MEDIUM] FlowiseAI Flowise up to 3.0.12 Custom MCP validateMCPServerConfig server-side request forgery
A vulnerability was found in FlowiseAI Flowise up to 3.0.12. It has been rated as critical. This issue affects the function validateMCPServerConfig of the component Custom MCP Component. The manipulation leads to server-side request forgery.
This vulnerability is uniquely identified as CVE-2026-43995. The attack is possible to be carried out remotely. Moreover, an exploit is present.
Upgrading the affected component is advised.
VulDB
FlowiseAI Flowise up to 3.0.12 API Document Loader APILoader.ts axios.get pageContent server-side request forgery
vuldb·2026-05-21·CVSS 5.3
CVE-2026-43995 [MEDIUM] FlowiseAI Flowise up to 3.0.12 API Document Loader APILoader.ts axios.get pageContent server-side request forgery
A vulnerability was found in FlowiseAI Flowise up to 3.0.12. It has been declared as critical. This vulnerability affects the function axios.get of the file packages/components/nodes/documentloaders/API/APILoader.ts of the component API Document Loader Component. Executing a manipulation of the argument pageContent can lead to server-side request forgery.
This vulnerability is handled as CVE-2026-43995. The attack can be executed remotely. Additionally, an exploit exists.
It is recommended to upgrade the affected component.
VulDB
FlowiseAI Flowise up to 3.0.12 OpenAPI Toolkit OpenAPIToolkit.ts loadOpenApiSpec server-side request forgery
vuldb·2026-05-21·CVSS 5.3
CVE-2026-43995 [MEDIUM] FlowiseAI Flowise up to 3.0.12 OpenAPI Toolkit OpenAPIToolkit.ts loadOpenApiSpec server-side request forgery
A vulnerability categorized as critical has been discovered in FlowiseAI Flowise up to 3.0.12. Impacted is the function loadOpenApiSpec of the file packages/components/nodes/tools/OpenAPIToolkit/OpenAPIToolkit.ts of the component OpenAPI Toolkit. The manipulation results in server-side request forgery.
This vulnerability was named CVE-2026-43995. The attack may be performed from remote. In addition, an exploit is available.
It is advisable to upgrade the affected component.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-05-11
Published