cbcvebase.
CVE-2026-5027
published 2026-03-27

CVE-2026-5027: The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter from the multipart form data, allowing an attacker to write files to arbitrary…

PriorityP184high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ITWEXPLOITVulnCheck KEVInitial access
Exploited in the wild
EPSS
2.10%
79.4th percentile
The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter from the multipart form data, allowing an attacker to write files to arbitrary locations on the filesystem using path traversal sequences ('../').

Affected

1 ranges
VendorProductVersion rangeFixed in
langflow-ailangflow

Detection & IOCsextracted from sources · hover to see the quote

urlPOST /api/v2/files
path../../../../../../../../../tmp/
commandfilename=../../../../../../../../../tmp/<randstr>.txt in multipart POST /api/v2/files
sigma
shodan-query: title:"Langflow" | fofa-query: title="Langflow"
  • Detect unauthenticated auto-login token harvest: a single GET to /api/v1/auto_login returning an access_token, immediately followed by a POST to /api/v2/files with a path-traversal filename, is the two-step exploit chain.
  • Alert on multipart form-data file uploads to /api/v2/files where the filename parameter contains '../' (path traversal sequences).
  • Monitor for HTTP 201 responses from /api/v2/files containing JSON fields 'id', 'name', and 'path' — this is the server-side confirmation of a successful (potentially malicious) file write.
  • Honeypot telemetry shows attackers dropping test files on vulnerable instances; hunt for unexpected new files in /tmp or other world-writable directories on Langflow hosts.
  • Langflow instances with the title 'Langflow' exposed on the internet (approx. 7,000 per Censys) are the target population; use Shodan/FOFA queries title:"Langflow" to identify exposed assets.
  • ·The vulnerability affects Langflow <= 1.8.4 (langflow-base <= 0.8.2). Patched versions are langflow-base 0.8.3 and Langflow application 1.9.0 (latest recommended: 1.10.0). Ensure version checks in detection/inventory reflect these boundaries.
  • ·Censys exposure data includes historical scan results from the previous 12 months and may overstate the number of currently exposed instances; use real-time scans for accurate asset counts.

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vulncheck8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.