Vulnerabilities > Langflow > Langflow > 1.0.14

DATE CVE VULNERABILITY TITLE RISK
2025-04-07 CVE-2025-3248 Missing Authentication for Critical Function vulnerability in Langflow
Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint.
network
low complexity
langflow CWE-306
critical
 9.8
9.8