flowise-components 3.1.0

Direct Vulnerabilities

Known vulnerabilities in the flowise-components package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
C Arbitrary Code Injection flowise-components is a Flowiseai Components Affected versions of this package are vulnerable to Arbitrary Code Injection via the `node-custom-function` endpoint when user-supplied JavaScript is executed in a NodeVM sandbox without sufficient route-level authorization. A user can execute commands on the server by submitting malicious JavaScript code that escapes the sandbox and gains access to the host `process` object, which can run code as a `child_process`. This vulnerability only occurs when `E2B_APIKEY` is not set. It is not set by default. How to fix Arbitrary Code Injection? Upgrade `flowise-components` to version 3.1.2 or higher.	<3.1.2
H Incomplete List of Disallowed Inputs flowise-components is a Flowiseai Components Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs inadequate input validation in the `validateCommandFlags` and `validateArgsForLocalFileAccess` functions. An attacker can execute arbitrary commands on the server by bypassing command flag blacklists and local file access restrictions through crafted arguments to the MCP interface. This is only exploitable if the attacker has an account or API access with view and update permissions for chatflows, and the deployment environment has the required commands (such as docker or npx) available. How to fix Incomplete List of Disallowed Inputs? Upgrade `flowise-components` to version 3.1.2 or higher.	<3.1.2

Vulnerability

Vulnerable Version

Arbitrary Code Injection

flowise-components is a Flowiseai Components

Affected versions of this package are vulnerable to Arbitrary Code Injection via the node-custom-function endpoint when user-supplied JavaScript is executed in a NodeVM sandbox without sufficient route-level authorization. A user can execute commands on the server by submitting malicious JavaScript code that escapes the sandbox and gains access to the host process object, which can run code as a child_process. This vulnerability only occurs when E2B_APIKEY is not set. It is not set by default.

How to fix Arbitrary Code Injection?

Upgrade flowise-components to version 3.1.2 or higher.

<3.1.2

Incomplete List of Disallowed Inputs

flowise-components is a Flowiseai Components

Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs inadequate input validation in the validateCommandFlags and validateArgsForLocalFileAccess functions. An attacker can execute arbitrary commands on the server by bypassing command flag blacklists and local file access restrictions through crafted arguments to the MCP interface. This is only exploitable if the attacker has an account or API access with view and update permissions for chatflows, and the deployment environment has the required commands (such as docker or npx) available.

How to fix Incomplete List of Disallowed Inputs?

Upgrade flowise-components to version 3.1.2 or higher.

<3.1.2

flowise-components@3.1.0

Flowiseai Components

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities

Fix vulnerabilities automatically