CVE-2026-41274

Name of the Vulnerable Software and Affected Versions Flowise versions prior to 3.1.0

Description The GraphCypherQAChain node forwards user-provided input directly into the Cypher query execution pipeline without proper sanitization. This allows an attacker to inject arbitrary Cypher commands that are executed on the underlying Neo4j database, potentially leading to data exfiltration, modification, deletion, or schema discovery. The issue occurs within the run() function of the GraphCypherQAChain.ts file, where the query variable is passed to the chain without escaping. Exploitation requires access to the prediction endpoint '/api/v1/prediction/{flowId}'.

Recommendations Update to version 3.1.0. As a temporary workaround, restrict access to the '/api/v1/prediction/{flowId}' endpoint to authorized users only.