Vulnerabilities in Langflow
6 resultsCVE-2025-34291CRITICALLangflow <= 1.6.9 CORS Misconfiguration to Token Hijack & RCEEPSS 78.9%KEVCVE-2026-0769CRITICALLangflow eval_custom_component_code Eval Injection Remote Code Execution VulnerabilityEPSS 33.8%CVE-2026-0770CRITICALLangflow exec_globals Inclusion of Functionality from Untrusted Control Sphere Remote Code Execution VulnerabilityEPSS 10.4%CVE-2026-0768CRITICALLangflow code Code Injection Remote Code Execution VulnerabilityEPSS 2.0%CVE-2026-0772HIGHLangflow Disk Cache Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.9%CVE-2026-0771HIGHLangflow PythonFunction Code Injection Remote Code Execution VulnerabilityEPSS 0.6%