Between June 16-19, 2026, multiple security advisories were published for Langflow, a visual AI agent builder.

Between June 16-19, 2026, multiple security advisories were published for Langflow, a visual AI agent builder. The advisories (CVEs: CVE-2026-42867, CVE-2026-55423, CVE-2026-33760, CVE-2026-55447, CVE-2026-55255, CVE-2026-55446, CVE-2026-48520, CVE-2026-48519, CVE-2026-55450) cover path traversal, IDOR, RCE, DoS, and file read vulnerabilities, some requiring no authentication. Concurrently, PyPI shows rapid dev releases (1.11.0.dev8 to .dev14, June 15-21) indicating active patching. While fixes are being deployed, the severity and breadth of issues may erode trust in the platform for production use. No evidence of exploitation has been reported, but the disclosure could slow enterprise adoption. Sources: OSV advisory list and PyPI releases.