📦 Agentflow

Agentflow software by Flowring has a Missing Authentication vulnerability (CWE-288) that allows unauthenticated remote attackers to directly access database functionality. This enables reading, modify...

Agentflow software from Flowring contains an authentication bypass vulnerability that allows unauthenticated remote attackers to obtain arbitrary user authentication tokens and log into the system as ...

Agentflow software by Flowring contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files and execute arbitrary code on the server. This affects all ...

AgentFlow software by Flowring contains a reflected cross-site scripting (XSS) vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript in users' browsers via phishing attac...

AgentFlow software by Flowring contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript. When users load affected pages, the injected cod...