Flowise Mass Assignment Vulnerability in Chatflow Update Endpoint Allows Cross-Workspace Reassignment

A mass assignment vulnerability has been identified in Flowise versions prior to 3.1.2, specifically within the chatflow update endpoint. This vulnerability allows authenticated users to manipulate server-controlled properties, such as deployment status, visibility, and workspace assignment, without proper validation or authorization. As a result, users can unauthorizedly modify chatflow attributes and reassign them to different workspaces, disrupting workflow management and tenant isolation.

Impact

Exploitation of this vulnerability could lead to unauthorized changes in chatflow visibility and deployment status, as well as cross-workspace reassignment of chatflows, allowing for unauthorized access to private workflows and potential disruption of deployed agent workflows.

Reproduction

To reproduce this vulnerability, authenticate to the Flowise interface and send a PUT request to the chatflow update endpoint. Include additional fields in the request body that manipulate server-controlled properties, such as 'deployed', 'isPublic', 'workspaceId', 'createdDate', and 'updatedDate'. The server will accept and persist these injected values, allowing for cross-workspace reassignment of the chatflow.

Remediation

Users should update to Flowise version 3.1.2 or later, where this vulnerability has been patched.