Description
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, the /api/v1/attachments/:chatflowId/:chatId endpoint is listed in WHITELIST_URLS, allowing unauthenticated access to the file upload API. While the server validates uploads based on the MIME types defined in chatbotConfig.fullFileUpload.allowedUploadFileTypes, it implicitly trusts the client-provided Content-Type header (file.mimetype) without verifying the file's actual content (magic bytes) or extension (file.originalname). Consequently, an attacker can bypass this restriction by spoofing the Content-Type as a permitted type (e.g., application/pdf) while uploading malicious scripts or arbitrary files. Once uploaded via addArrayFilesToStorage, these files persist in backend storage (S3, GCS, or local disk). This vulnerability serves as a critical entry point that, when chained with other features like static hosting or file retrieval, can lead to Stored XSS, malicious file hosting, or Remote Code Execution (RCE). This issue has been patched in version 3.0.13.
INFO
Published Date :
2026-03-07T05:07:50.067Z
Last Modified :
2026-03-09T20:44:24.875Z
Source :
GitHub_M
AFFECTED PRODUCTS
The following products are affected by CVE-2026-30821 vulnerability.
| Vendors | Products |
|---|---|
| Flowiseai |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2026-30821.
