All 2 CVE vulnerabilities found in flow, with AI-generated Chinese analysis, references, and POCs.
Vendor: Total.js
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-1126 | lwj flow SVG File FormResource.java uploadFile unrestricted upload CWE-434 | 6.3 | Medium | 2026-01-18 |
| CVE-2025-11655 | Total.js Flow SVG File unrestricted upload CWE-434 | 4.7 | Medium | 2025-10-13 |
All 2 known CVE vulnerabilities affecting flow with full Chinese analysis, references, and POCs where available.