Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
PYSEC-2026-1525
  • PyPI/langflow
Langflow affected by Remote Code Execution via validate_code() exec() 4 days ago
  • No fix available
  • Severity - 8.9 (High)
PYSEC-2026-1524
  • PyPI/langflow
Langflow Missing Authentication on Critical API Endpoints 4 days ago
  • Fix available
  • Severity - 8.8 (High)
PYSEC-2026-1522
  • PyPI/langflow
Langflow vulnerable to Server-Side Request Forgery 4 days ago
  • Fix available
  • Severity - 7.7 (High)
PYSEC-2026-1526
  • PyPI/langflow-base
Langflow Vulnerable to Privilege Escalation via CLI Superuser Creation (Post-RCE) 4 days ago
  • Fix available
  • Severity - 8.8 (High)
PYSEC-2026-1523
  • PyPI/langflow
Langflow vulnerable to remote code execution 4 days ago
  • No fix available
  • Severity - 6.9 (Medium)
PYSEC-2026-1521
  • PyPI/langflow
Inefficient Regular Expression Complexity in langflow 4 days ago
  • No fix available
  • Severity - 5.1 (Medium)
PYSEC-2026-378
  • PyPI/langflow
Langflow: BaseFileComponent-based nodes arbitrary file read with RCE exploit 29 Jun
  • Fix available
  • Severity - 9.6 (Critical)
PYSEC-2026-376
  • PyPI/langflow
Langflow has Remote Code Execution in CSV Agent 29 Jun
  • No fix available
  • Severity - 9.8 (Critical)
PYSEC-2026-377
  • PyPI/langflow
Langflow Knowledge Bases API is Vulnerable to Path Traversal 29 Jun
  • Fix available
  • Severity - 9.6 (Critical)
PYSEC-2026-379
  • PyPI/langflow
Unauthenticated Remote Code Execution in Langflow via Public Flow Build Endpoint 29 Jun
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2026-380
  • PyPI/langflow-base
Langflow Unauth RCE 29 Jun
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2026-224
  • PyPI/langflow
See record for full details 23 Jun
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2026-223
  • PyPI/langflow
See record for full details 23 Jun
  • Fix available
  • Severity - 7.5 (High)
PYSEC-2026-222
  • PyPI/langflow
See record for full details 23 Jun
  • Fix available
  • Severity - 6.1 (Medium)
PYSEC-2026-221
  • PyPI/langflow
See record for full details 23 Jun
  • Fix available
  • Severity - 9.9 (Critical)
PYSEC-2026-244
  • PyPI/langflow
See record for full details 23 Jun
  • Fix available
  • Severity - 6.1 (Medium)