Description
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, /api/v1/public-chatbotConfig/:id ep exposes sensitive data including API keys, HTTP authorization headers and internal configuration without any authentication. An attacker with knowledge just of a chatflow UUID can retrieve credentials stored in password type fields and HTTP headers, leading to credential theft and more. This vulnerability is fixed in 3.1.0.
Published: 2026-04-23
Score: 7.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Sensitive Data Leak
Action: Patch
AI Analysis

Impact

Flowise, a drag & drop interface for building large language model flows, contains an endpoint /api/v1/public-chatbotConfig/:id that, before version 3.1.0, returns configuration data without any authentication. The response includes API keys, HTTP authorization headers, and credentials stored in password type fields, enabling an attacker who knows a chatflow UUID to acquire sensitive credentials and internal configuration, thereby compromising confidentiality and enabling credential theft.

Affected Systems

The vulnerability affects FlowiseAI Flowise prior to version 3.1.0. All instances of the application running any version older than 3.1.0 and exposing the public‑chatbotConfig endpoint are impacted.

Risk and Exploitability

The CVSS score of 7.7 indicates a high severity vulnerability, yet the EPSS score of <1% suggests a low probability of exploitation. The issue is not listed in CISA’s KEV catalog. An attacker can gain access by simply knowing a valid UUID and making a request to the unauthenticated endpoint, revealing privileged information. Implementing authentication or removing the endpoint would eliminate the attack surface.

Generated by OpenCVE AI on April 28, 2026 at 07:29 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Flowise to version 3.1.0 or later to resolve the data exposure flaw.
  • Configure network controls or firewall rules to restrict access to the /api/v1/public-chatbotConfig/ endpoint to trusted IP ranges or internal hosts.
  • Add proper authentication and authorization checks before exposing chatflow configurations to ensure that only authorized users can retrieve sensitive data.
  • Review and remove any hard‑coded credentials or sensitive values from the password fields within chatflow configurations.

Generated by OpenCVE AI on April 28, 2026 at 07:29 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-4jpm-cgx2-8h37 Flowise: Sensitive Data Leak in public-chatbotConfig
History

Sat, 25 Apr 2026 02:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 24 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Flowiseai
Flowiseai flowise
CPEs cpe:2.3:a:flowiseai:flowise:*:*:*:*:*:*:*:*
Vendors & Products Flowiseai
Flowiseai flowise
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Thu, 23 Apr 2026 19:45:00 +0000

Type Values Removed Values Added
Description Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, /api/v1/public-chatbotConfig/:id ep exposes sensitive data including API keys, HTTP authorization headers and internal configuration without any authentication. An attacker with knowledge just of a chatflow UUID can retrieve credentials stored in password type fields and HTTP headers, leading to credential theft and more. This vulnerability is fixed in 3.1.0.
Title Flowise: Sensitive Data Leak in public-chatbotConfig
Weaknesses CWE-200
CWE-522
CWE-862
References
Metrics cvssV4_0

{'score': 7.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N'}

Subscriptions

Flowiseai Flowise
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-25T01:27:15.859Z

Reserved: 2026-04-18T14:01:46.801Z

Link: CVE-2026-41266

cve-icon Vulnrichment

Updated: 2026-04-25T01:27:11.661Z

cve-icon NVD

Status : Modified

Published: 2026-04-23T20:16:15.030

Modified: 2026-04-25T02:16:02.477

Link: CVE-2026-41266

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T07:30:26Z

Weaknesses