cbcvebase.
CVE-2026-48520
published 2026-06-23

CVE-2026-48520: Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) contains…

PriorityP433medium6.1CVSS 3.1
AVNACHPRNUIRSCCHINAN
EPSS
0.25%
16.1th percentile
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) contains a potential arbitrary file-read vulnerability, depending on the exact flow configuration used. By making a flow public, public execution of the flow is allowed. The execution request can contain a list of files that gets read by Langflow and fed into the LLM. The files path can be any path supported by the storage - it can be either a local file or S3 path if supported by the local configuration This vulnerability is fixed in 1.10.0.

Affected

3 ranges
VendorProductVersion rangeFixed in
langflow-ailangflow< 1.10.01.10.0
langflowlangflow< 1.10.01.10.0
langflowlangflow>= 0 < 1.10.01.10.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.