关联漏洞
标题:
Langflow 安全漏洞
(CVE-2025-3248)
描述:Langflow是Langflow开源的一个用于构建多代理和 RAG 应用程序的可视化框架。 Langflow 1.3.0之前版本存在安全漏洞,该漏洞源于/api/v1/validate/code端点存在代码注入漏洞,可能导致远程未经验证的攻击者执行任意代码。
描述
CVE-2025-3248 Langflow RCE Exploit
介绍
# mitsec - CVE-2025-3248 Langflow RCE Exploit
Remote Code Execution (RCE) exploit for **Langflow** applications vulnerable to **CVE-2025-3248**.
> Affected Endpoint: `/api/v1/validate/code`
## 🚀 Exploit Features
- Remote and unauthenticated RCE
- No authentication required
- Python3 one-liner script
- Colorized terminal output
## 🔧 Usage
```bash
python3 mitsec.py -u http://target:7860 -c "id"
```
## 🧪 Example Output
```bash
[+] Command Output:
uid=1001(langflow) gid=1001(langflow) groups=1001(langflow)
```
## 🧠 CVE Details
- **CVE**: CVE-2025-3248
- **Type**: Remote Code Execution (RCE)
- **Component**: Langflow backend
- **Condition**: Misuse of dynamic `exec()` in user-controlled code path
## 📌 ZoomEye Dork
```
app="Langflow"
```
## 🧑💻 Author
- Twitter: [@ynsmroztas](https://twitter.com/ynsmroztas)
- GitHub: [@ynsmroztas](https://github.com/ynsmroztas)
## 📜 Disclaimer
> This tool is for **educational and authorized security testing** purposes only. Unauthorized use is prohibited.
文件快照
[4.0K] /data/pocs/9f8f128c0e2b89c52ccffd3067c53f02cd47c5dc
├── [3.1K] langflow_rce_unauth.py
└── [1.0K] README.md
0 directories, 2 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。