CVE-2026-56271 - Flowise - Weak Default JWT Secrets in Authentication Middleware
CVE ID :CVE-2026-56271 Published : July 12, 2026, 12:16 p.m. | 16 minutes ago Description :Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses weak hardcoded default JWT secrets ('auth_token', 'refresh_token') and default audience and issuer values ('AUDIENCE', 'ISSUER') in the...