CVE 10 CRITICAL

Flowise – Arbitrary File Write to Remote Code Execution via document-store API_CVE-2025-71338

June 25, 2026 invoker category_cve

10 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Description

Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that allows unauthenticated attackers to write arbitrary files to the filesystem. Attackers can exploit unsanitized fileName parameters with ../ sequences to overwrite critical files like package.json and achieve remote code execution when the application restarts.

AI Analysis

Arbitrary file write vulnerability allowing remote code execution via unsanitized fileName parameters in the document-store API

Basic Information

ID CVE-2025-71338

Source VulnCheck

Published Jun 25, 2026 at 21:41

Affected Product

Vendor Flowise

Product Flowise

Affected Versions Flowise Flowise 0

CWE Classification

CWE-73

AI Assessment

AI Score 10 / 10

AI Severity Critical

Vendor Flowise

Product Flowise

References

{
    "lastseen": "",
    "description": "Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that allows unauthenticated attackers to write arbitrary files to the filesystem. Attackers can exploit unsanitized fileName parameters with ../ sequences to overwrite critical files like package.json and achieve remote code execution when the application restarts.",
    "published": "2026-06-25T21:41:07.495Z",
    "modified": "2026-06-25T21:41:07.495Z",
    "type": "cve",
    "title": "Flowise - Arbitrary File Write to Remote Code Execution via document-store API",
    "source": "VulnCheck",
    "references": "https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-8vvx-qvq9-5948\nhttps://www.vulncheck.com/advisories/flowise-arbitrary-file-write-to-remote-code-execution-via-document-store-api",
    "id": "CVE-2025-71338",
    "bulletinFamily": "",
    "cwe": [
        "CWE-73"
    ],
    "cvelist": null,
    "sourceData": "Flowise Flowise 0",
    "sourceHref": "",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Flowise",
    "version": "0",
    "vendor": "Flowise",
    "ai_description": "Arbitrary file write vulnerability allowing remote code execution via unsanitized fileName parameters in the document-store API",
    "ai_severity": "Critical",
    "ai_vendor": "Flowise",
    "ai_product": "Flowise",
    "ai_version": "0",
    "ai_score": 10
}

💭 Join the Security Discussion ❌ Cancel Reply