CVE-2026-10129 | IBM Langflow OSS up to 1.9.3 API Request follow_redirects server-side request forgery
A vulnerability was found in IBM Langflow OSS up to 1.9.3. It has been classified as critical. Affected by this issue is some unknown functionality of the component API Request. Performing a manipulation of the argument follow_redirects results in server-side request forgery.
This vulnerability is known as CVE-2026-10129. Remote exploitation of the attack is possible. No exploit is available.
Upgrading the affected component is recommended.VulDB Recent EntriesRead More