CVE-2025-71334 | Flowise up to 3.0.5 /api/v1/chatflows chatId file inclusion (GHSA-q67q-549q-p849)

A vulnerability was found in Flowise up to 3.0.5. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /api/v1/chatflows. Executing a manipulation of the argument chatId can lead to file inclusion.

The identification of this vulnerability is CVE-2025-71334. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More