CVE-2025-71332 - Flowise - SQL Injection in importChatflows API via chatflow.id Parameter
CVE ID :CVE-2025-71332 Published : June 24, 2026, 11:53 a.m. | 1 hour, 17 minutes ago Description :Flowise through 2.2.7 contains a SQL injection vulnerability in the importChatflows API. Due to insufficient validation of the chatflow.id value, an authenticated user can supply a crafted JSON...