CVE-2026-3346 | IBM Langflow Desktop up to 1.8.4 Web UI sql injection

A vulnerability has been found in IBM Langflow Desktop up to 1.8.4 and classified as critical. Affected by this issue is some unknown functionality of the component Web UI. Performing a manipulation results in sql injection.

This vulnerability is known as CVE-2026-3346. Remote exploitation of the attack is possible. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More