CVE-2026-56275 | Flowise up to 3.0.x HTTP Request httpSecurity.ts server-side request forgery (GHSA-9hrv-gvrv-6gf2)

Inserito da Angelo Barbosa | Giu 23, 2026 | CVE

A vulnerability marked as critical has been reported in Flowise up to 3.0.x. Affected by this issue is some unknown functionality of the file httpSecurity.ts of the component HTTP Request Handler. This manipulation causes server-side request forgery.

This vulnerability is handled as CVE-2026-56275. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-56275 | Flowise up to 3.0.x HTTP Request httpSecurity.ts server-side request forgery (GHSA-9hrv-gvrv-6gf2)

Post correlati

CVE-2024-34680 | Samsung Mobile Devices WlanTest implicit intent

CVE-2025-4933 | ponaravindb Hospital-Management-System 1.0 /doctor-panel.php ID sql injection

CVE-2025-6042 | Lisfinity Core Plugin up to 1.4.0 on WordPress privileges management

CVE-2025-40601 | SonicWall SonicOS SSLVPN Service stack-based overflow (SNWLID-2025-0016)