CVE-2026-41277

Name of the Vulnerable Software and Affected Versions Flowise versions prior to 3.1.0

Description A Mass Assignment issue in the DocumentStore creation endpoint allows authenticated users to control the primary key id and internal state fields of DocumentStore entities. Since the service uses the repository.save() function with a client-supplied primary key, the POST create endpoint acts as an implicit UPSERT operation, which is a database operation that updates an existing record if it exists or inserts a new one if it does not. This allows for the overwriting of existing DocumentStore objects. In multi-workspace or multi-tenant deployments, this can result in cross-workspace object takeover and broken object-level authorization, enabling an attacker to reassign or modify DocumentStore objects belonging to other workspaces.

Recommendations Update to version 3.1.0.