FlowiseAI Flowise v2.2.6 was discovered to contain an arbitrary file upload vulnerability in /api/v1/attachments.
{ "github_reviewed": true, "github_reviewed_at": "2025-03-05T18:37:33Z", "nvd_published_at": "2025-03-04T22:15:40Z", "cwe_ids": [ "CWE-434" ], "severity": "HIGH" }