CVE-2024-9148 – Flowise Stored Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2024-9148

Flowise < 2.1.1 suffers from a Stored Cross-Site vulnerability due to a lack of input sanitization in Flowise Chat Embed < 2.0.0. • https://www.tenable.com/security/research/tra-2024-40 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •