CyberIntel ⬡ News
★ Saved ◆ Cyber Reads
← Back ⬡ Vulnerabilities & CVEs Jun 26, 2026

CVE-2025-71333 | Flowise up to 2.2.4 /api/v1/attachments chatflowId file inclusion (GHSA-h42x-xx2q-6v6g)

VulDB Archived Jun 26, 2026 ! Full text unavailable

A vulnerability identified as critical has been detected in Flowise up to 2.2.4 . The affected element is an unknown function of the file /api/v1/attachments . Performing a manipulation of the argument chatflowId results in file inclusion. This vulnerability is identified as CVE-2025-71333 . The attack can be initiated remotely. There is not any exploit available.

Full text unavailable — view original
✦ AI Summary · Claude Sonnet


    Full text unavailable.
    Open original ↗
    💬 Team Notes
    Article Info
    Source
    VulDB
    Category
    ⬡ Vulnerabilities & CVEs
    Published
    Jun 26, 2026
    Archived
    Jun 26, 2026
    Full Text
    ✗ Not available
    Open Original ↗