Main Vulnerability Database Exploits ID:12640 - Exploit for Code Injection in Langflow - CVE-2026-27966

ID:12640 - Exploit for Code Injection in Langflow - CVE-2026-27966

Published: April 24, 2026

Vulnerability identifier: #VU127533

Vulnerability risk: High

CVE-ID: CVE-2026-27966

CWE-ID: CWE-94

Exploitation vector: Remote access

Vulnerable software:
Langflow

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/multi/http/langflow_rce_cve_2026_27966

Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code.

The vulnerability exists due to improper control of code generation in the CSV Agent node when processing prompt input that reaches the exposed python_repl_ast tool. A remote attacker can send a specially crafted prompt to execute arbitrary code.

The issue is caused by allow_dangerous_code being hardcoded to true, which automatically exposes LangChain's Python REPL tool without a disable option.

Remediation

Install security update from vendor's website.

ID:12640 - Exploit for Code Injection in Langflow - CVE-2026-27966

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human