Vulnerabilities

CVE-2026-30823 - Flowise: IDOR leading to Account Takeover and Enterprise Feature Bypass via SSO ...

2026-03-07 0 views admin
CVE-2026-30823 - Flowise: IDOR leading to Account Takeover and Enterprise Feature Bypass via SSO ...

CVE ID :CVE-2026-30823 Published : 7 Mar 2026, 5:10 a.m. | 20 minutes ago Description :Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, there is an IDOR vulnerability, leading to account takeover and enterprise feature bypass via SSO configuration. This issue has been patched in version 3.0.13. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-30823

More from Vulnerabilities

CVE-2026-30247 - WeKnora: SSRF via Redirection

CVE-2026-30247 - WeKnora: SSRF via Redirection

2026-03-07 0
CVE-2026-30820 - Flowise Authorization Bypass via Spoofed x-request-from Header

CVE-2026-30820 - Flowise Authorization Bypass via Spoofed x-request-from Header

2026-03-07 0
CVE-2026-30821 - Flowise: Arbitrary File Upload via MIME Spoofing

CVE-2026-30821 - Flowise: Arbitrary File Upload via MIME Spoofing

2026-03-07 0
CVE-2026-30822 - Flowise: Mass Assignment in `/api/v1/leads` Endpoint

CVE-2026-30822 - Flowise: Mass Assignment in `/api/v1/leads` Endpoint

2026-03-07 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views