Research
Flowise AI Agent Builder Under Active Exploitation: CVSS 10.0 Code Injection (CVE-2025-59528)
A maximum-severity code injection vulnerability (CVE-2025-59528, CVSS 10.0) in Flowise, the popular open-source AI agent builder, is under active exploitation with over 12,000 instances still exposed. Flowise is widely used by developers to visually build LLM agent workflows. The vulnerability allows unauthenticated remote code execution, making any exposed instance a direct entry point for attackers — a concrete example of the AI toolchain attack surface expanding faster than defenses.
↳ Follow the thread