Dashboard Vulnerabilities News Research Archive Stats Dataset For devs

aisecwatch.com

Real-time AI security monitoring. Tracking AI-related vulnerabilities, safety and security incidents, privacy risks, research developments, and policy changes.

Navigation

Vulnerabilities News Research Digest Archive Newsletter Archive Subscribe Data Sources Statistics Dataset API Integrations Widget RSS Feed

Maintained by

Truong (Jack) Luu

Information Systems Researcher

GHSA-28g4-38q8-3cwc: Flowise: Cypher Injection in GraphCypherQAChain | AI Sec Watch

GHSA-28g4-38q8-3cwc: Flowise: Cypher Injection in GraphCypherQAChain

highvulnerability

security

Source: GitHub Advisory DatabaseApril 16, 2026

Summary

Flowise's GraphCypherQAChain node has a cypher injection vulnerability (CWE-943, where attackers inject malicious database commands into user input without sanitization). An attacker with access to a vulnerable chatflow can execute arbitrary Cypher commands on the connected Neo4j database (a graph database), allowing them to read, modify, or delete data.

Classification

Attack Type

RAG Poisoning

Attack SophisticationTrivial

Impact (CIA+S)

confidentialityintegrity

Affected Vendors

LangChain

Affected Packages

flowise-components@<= 3.0.13 (fixed: 3.1.0)flowise@<= 3.0.13 (fixed: 3.1.0)

Related Issues

CVE-2026-34371: LibreChat is a ChatGPT clone with additional features. Prior to 0.8.4, LibreChat trusts the name field returned by the e

Same vendorNVD/CVE Database

CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-

Monthly digest — independent AI security research

Original source: https://github.com/advisories/GHSA-28g4-38q8-3cwc

First tracked: April 16, 2026 at 08:00 PM

Classified by LLM (prompt v3) · confidence: 92%

availability

AI Component TargetedRAG

NVD/CVE Database

CVE-2025-45150: Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive

Same vendorNVD/CVE Database

CVE-2026-40087: LangChain is a framework for building agents and LLM-powered applications. Prior to 0.3.84 and 1.2.28, LangChain's f-str

Same vendorNVD/CVE Database

CVE-2025-54868: LibreChat is a ChatGPT clone with additional features. In versions 0.0.6 through 0.7.7-rc1, an exposed testing endpoint

Same vendorNVD/CVE Database