CVE ID :CVE-2024-58351 Published : June 20, 2026, 3:21 p.m. | 1 hour, 48 minutes ago Description :Flowise before 2.1.4 allows configuration to be injected into the Chainflow during execution via the overrideConfig option, supported in both the frontend web integration and the backend...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2024-58351 - Flowise - Remote Code Execution via overrideConfig Parameter

VERWANDTEARTIKEL

CVE-2026-56345 - AVideo - Arbitrary User Session Hijacking via Meet Plugin uploadRecordedVideo Endpoint

CVE-2026-56340 - vLLM - Denial of Service via Unvalidated Multimodal Embeddings

CVE-2026-56341 - AVideo - Unauthenticated Access to Payment Log DataTables Endpoints via list.json.php

CVE-2022-50972 - WooCommerce 7.1.0 Remote Code Execution via class-wc-meta-box-product-images.php

CVE-2020-37255 - WordPress Time Capsule Plugin 1.21.16 Authentication Bypass

CVE-2019-25763 - WordPress Ultimate Addons for Beaver Builder 1.2.4.1 Authentication Bypass