Exploit for Missing Authentication for Critical Function in Flowiseai Flowise

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

CVE-2025-58434 — Flowise Account Takeover via Token Disclosure ⚠️ This repository is for educational and authorized security research only. Unauthorized use against systems you do not own or have explicit permission to test is illegal. --- Table of...

Visit Original Source

Basic Information

ID 85EF54BC-A345-51E2-8911-097DB2730411

Published Apr 12, 2026 at 16:52

Modified Apr 12, 2026 at 16:56

{
    "lastseen": "2026-04-12T16:59:34",
    "description": "CVE-2025-58434 \u2014 Flowise Account Takeover via Token Disclosure \u26a0\ufe0f This repository is for educational and authorized security research only. Unauthorized use against systems you do not own or have explicit permission to test is illegal. --- Table of...",
    "published": "2026-04-12T16:52:28",
    "modified": "2026-04-12T16:56:21",
    "type": "githubexploit",
    "title": "Exploit for Missing Authentication for Critical Function in Flowiseai Flowise",
    "source": "",
    "references": "",
    "id": "85EF54BC-A345-51E2-8911-097DB2730411",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2025-58434"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/kartik2005221/CVE-2025-58434-poc",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Exploit for Missing Authentication for Critical Function in Flowiseai Flowise_85EF54BC-A345-51E2-8911-097DB2730411

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply