CVE-2025-50538

Publication date

2025-10-06 00:00:00

Family

mitre

State

PUBLISHED

Description

Flowise before 3.0.5 allows XSS via an IFRAME element when an admin views the chat log.