Flowise before 3.0.5 allows XSS via a FORM element and an INPUT element when an admin views the chat log.
CVE-2025-29192
🟠High
CVE-2025-29192: XSS in Flowise
Flowise before 3.0.5 allows XSS via a FORM and INPUT element when an admin views the chat log.
CVE ID
CVE-2025-29192
CVSS Score
8.2
Vendor
unknown
Published
Oct 06
Vulnerability Details
- CVE ID
- CVE-2025-29192
- Severity
- High
- CVSS v3 Score
- 8.2 / 10.0
- Affected Vendor
- unknown
- Publication Date
- October 06, 2025
External Resources
Need Help?
Protect your infrastructure with our comprehensive security scanning tools.
Explore Security Scanners