← Back to Search

Langflow

2025-05-05 · Severity 5/10 — Medium · Unknown
Incident Summary

Langflow contains a missing authentication vulnerability in the /api/v1/validate/code endpoint that allows a remote, unauthenticated attacker to execute arbitrary code via crafted HTTP requests.

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2025-05-05
Related Breaches
Langflow
2026-03-25 · Severity 7 · Vulnerability