TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8751

@thehackernews

The Hacker News

Views9,110Post view count
PostedApr 704/07/2026, 05:57 AM
Post content

Post content

πŸ›‘ Flowise has a CVSS 10.0 RCE flaw (CVE-2025-59528) now under active attack. A bug in MCP config lets attackers run JavaScript with full system access using just an API token. Over 12,000 exposed instances raise risk. πŸ”— Exploitation details β†’ https://thehackernews.com/2026/04/flowise-ai-agent-builder-under-active.html