Security Advisory

CVE-2026-8027

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-06 13:45:10

Last updated 2026-05-06 15:26:30

Assigner VulDB

State PUBLISHED

Description

A weakness has been identified in FlowiseAI Flowise up to 3.0.12. Affected by this vulnerability is an unknown functionality of the component User Controller Handler. This manipulation of the argument userId/organizationId/workspaceId/email causes authorization bypass. The attack may be initiated remotely. The affected component should be upgraded.

← Browse all CVEs View on cve.org ↗