Vulnerabilities > Flowiseai > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-27 | CVE-2024-8181 | Improper Authentication vulnerability in Flowiseai Flowise 1.8.2 An Authentication Bypass vulnerability exists in Flowise version 1.8.2. | 8.1 |
| 2024-08-27 | CVE-2024-8182 | Unspecified vulnerability in Flowiseai Flowise 1.8.2 An Unauthenticated Denial of Service (DoS) vulnerability exists in Flowise version 1.8.2 leading to a complete crash of the instance running a vulnerable version due to improper handling of user supplied input to the “/api/v1/get-upload-file” api endpoint. | 7.5 |
| 2024-07-01 | CVE-2024-36420 | Injection vulnerability in Flowiseai Flowise 1.4.3 Flowise is a drag & drop user interface to build a customized large language model flow. | 7.5 |
| 2024-07-01 | CVE-2024-36421 | Origin Validation Error vulnerability in Flowiseai Flowise 1.4.3 Flowise is a drag & drop user interface to build a customized large language model flow. | 7.5 |