Flowise

Flowise is a popular open-source low-code platform for building AI applications and chatbots. This critical vulnerability (CVSS 9.8) can be exploited remotely by an unauthenticated attacker with no user interaction required, allowing complete compromise of confidentiality, integrity, and availability. Security teams should immediately monitor for any available patches and implement network segmentation or access controls for Flowise deployments until the June 2026 vendor deadline is met.