GHSA-xhmj-rg95-44hv: Flowise: SSRF Protection Bypass via Unprotected Built-in HTTP Modules in Custom Function Sandbox
highvulnerability
security
Source: GitHub Advisory DatabaseApril 16, 2026
Summary
Flowise has a security flaw in its Custom Function feature where SSRF (Server-Side Request Forgery, a type of attack where a server is tricked into making unwanted network requests) protection only covers two libraries (axios and node-fetch) but leaves built-in Node.js modules like http, https, and net unprotected. This allows authenticated users to bypass the security controls and access internal network resources, such as cloud provider metadata services that contain sensitive credentials.
Classification
Attack Type
Supply Chain
Attack SophisticationModerate
Impact (CIA+S)
confidentialityintegrity
Affected Vendors
LangChain
Affected Packages
flowise-components@<= 3.0.13 (fixed: 3.1.0)flowise@<= 3.0.13 (fixed: 3.1.0)
Related Issues
Monthly digest — independent AI security research
Original source: https://github.com/advisories/GHSA-xhmj-rg95-44hv
First tracked: April 17, 2026 at 02:00 AM
Classified by LLM (prompt v3) · confidence: 85%