Home

Description

Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint that allows unauthenticated attackers to create user accounts. Remote attackers can exploit this endpoint to register arbitrary accounts and authenticate to the system, gaining full API access without credentials.

PUBLISHED Reserved 2026-06-08 | Published 2026-06-25 | Updated 2026-06-26 | Assigner VulnCheck




CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
CRITICAL: 9.1CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Problem types

Missing Authentication for Critical Function

Product status

Default status
unaffected

3.0.1 (semver)
affected

Credits

ReeFSpeK reporter

ERANV-EVA reporter

References

github.com/...lowise/security/advisories/GHSA-v5w9-prxf-w882 exploit

github.com/...lowise/security/advisories/GHSA-v5w9-prxf-w882 (GitHub Security Advisory (GHSA-v5w9-prxf-w882)) vendor-advisory

www.vulncheck.com/...s-via-unprotected-registration-endpoint (VulnCheck Advisory: Flowise - Authentication Bypass via Unprotected Registration Endpoint) third-party-advisory

cve.org (CVE-2025-71327)

nvd.nist.gov (CVE-2025-71327)

Download JSON