GHSA-7r4h-vmj9-wg42: 
Flowise vulnerability analysis and mitigation

A stored Cross-Site Scripting (XSS) vulnerability was discovered in Flowise versions before 3.0.5, identified as GHSA-7r4h-vmj9-wg42 and CVE-2025-29192. The vulnerability exists in the chat log functionality where HTML tags like input and form elements are allowed without proper sanitization. This vulnerability was discovered by LIFE-team2024 and publicly disclosed on October 3, 2025 (GitHub Advisory).

The vulnerability stems from insecure handling of data displayed in the user interface, specifically in components that render chat messages and logs. The application was using dangerouslySetInnerHTML to render data without proper sanitization in several React components including ViewMessagesDialog, NodeExecutionDetails, ChatMessage, and JSONViewer. The vulnerability has a CVSS v3.1 base score of 5.3 (Moderate) with the vector string CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N, indicating network attack vector, high attack complexity, no privileges required, and user interaction required (NVD).

The vulnerability allows an attacker to inject malicious HTML into the log via prompts, which when viewed by an admin, could lead to credential theft and sensitive information exposure. An attacker who successfully exploits this vulnerability could potentially hijack an admin account in the published chatbot, gaining access to view chat logs of other users and API keys (GitHub Advisory).

The vulnerability was patched in Flowise version 3.0.5. The fix introduces a new SafeHTML component that utilizes the dompurify library to sanitize HTML content before rendering. The patch replaces all instances of direct dangerouslySetInnerHTML usage with the new SafeHTML component, effectively mitigating the XSS risk (GitHub Pull).