GHSA-99pg-hqvx-r4gf: Flowise has an Arbitrary File Read

September 15, 2025

An arbitrary file read vulnerability in the chatId parameter supplied to both the /api/v1/get-upload-file and /api/v1/openai-assistants-file/download endpoints allows unauthenticated users to read unintended files on the local filesystem. In the default Flowise configuration this allows reading of the local sqlite db and subsequent compromise of all database content.

References

github.com/FlowiseAI/Flowise
github.com/FlowiseAI/Flowise/security/advisories/GHSA-99pg-hqvx-r4gf
github.com/advisories/GHSA-99pg-hqvx-r4gf

Code Behaviors & Features

Detect and mitigate GHSA-99pg-hqvx-r4gf with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →