A vulnerability labeled as problematic has been found in Flowise up to 3.0.7 . This affects an unknown part of the component Chat Message Handler . Executing a manipulation can lead to basic cross site scripting. This vulnerability is registered as CVE-2025-71331 . It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.