CVE-2026-33017

This repository contains a functional exploit for CVE-2026-33017, targeting Langflow <= 1.8.1. The exploit leverages unauthenticated API endpoints to create a public flow and inject malicious code, resulting in remote command execution via a reverse shell.

This repository contains a functional exploit for CVE-2026-33017, demonstrating unauthenticated remote code execution in Langflow via the /api/v1/build_public_tmp endpoint. The exploit crafts a malicious flow with embedded Python code that executes arbitrary commands on the target system.

The repository contains a functional exploit for CVE-2026-33017, an RCE vulnerability in Langflow's public flow build endpoint. The exploit leverages the ability to inject malicious custom components via the `data` parameter, leading to arbitrary code execution during the flow build process.

This repository contains a functional exploit for CVE-2026-33017, an unauthenticated RCE vulnerability in Langflow 1.8.1 and earlier. The exploit leverages the `/api/v1/build_public_tmp/{flow_id}/flow` endpoint to inject arbitrary Python code via crafted node configurations, executed via `exec()` without sandboxing.

This repository contains a functional exploit PoC for CVE-2026-33017, an unauthenticated remote code execution vulnerability in Langflow <= 1.8.1. The exploit leverages the `build_public_tmp` endpoint to inject malicious code via a CustomComponent node, which is executed unsandboxed by the server.

This repository provides a detailed technical writeup and step-by-step guide for exploiting CVE-2026-33017, an unauthenticated remote code execution vulnerability in Langflow < 1.9.0. It includes setup instructions, exploit code, and mitigation strategies.

This repository provides a detailed technical analysis of CVE-2026-33017, an unauthenticated remote code execution vulnerability in Langflow ≤ 1.8.2. The root cause is the unsafe use of `exec()` in the `/api/v1/build_public_tmp/{flow_id}/flow` endpoint, allowing arbitrary code execution.

This repository provides a fully functional lab environment for CVE-2026-33017, an unauthenticated RCE vulnerability in Langflow <= 1.8.1. It includes Docker configurations to deploy a vulnerable Langflow instance with additional misconfigurations for privilege escalation and lateral movement.

This repository contains a functional exploit PoC for CVE-2026-33017, targeting Langflow v1.8.1 with an unauthenticated RCE vulnerability. It includes a Docker-based lab environment, a Python exploit script, and detailed technical analysis of the vulnerability.

This repository contains a functional exploit for CVE-2026-33017, an unauthenticated remote code execution vulnerability in Langflow <= 1.8.2. The exploit leverages the `/api/v1/build_public_tmp/{flow_id}/flow` endpoint to inject arbitrary Python code, which is executed via `exec()` without sandboxing.

This repository contains a functional exploit for CVE-2026-33017, targeting Langflow <= 1.8.1. The exploit leverages unauthenticated API endpoints to create a malicious flow and execute arbitrary commands via a reverse shell payload.

This repository contains a functional exploit for CVE-2026-33017, an unauthenticated remote code execution vulnerability in Langflow <= 1.8.2. The exploit leverages the `/api/v1/build_public_tmp/{flow_id}/flow` endpoint to inject arbitrary Python code, which is executed via `exec()` without sandboxing.

This repository contains a functional exploit for CVE-2026-33017, targeting Langflow <= 1.8.1. The exploit leverages unauthenticated API endpoints to create a malicious flow and execute arbitrary commands via a reverse shell.

This repository contains a functional exploit PoC for CVE-2026-33017, an unauthenticated RCE vulnerability in Langflow 1.8.1. The PoC demonstrates code execution by submitting attacker-controlled component code to a public build endpoint and retrieving proof via the API.

This repository contains a functional Python exploit for CVE-2026-33017, targeting an unauthenticated RCE vulnerability in CTT Sovereign Echo. The exploit leverages a resonance gap in the flow builder endpoint to bypass sandboxing and execute arbitrary commands via an exec() sink.

This repository contains a functional exploit PoC for CVE-2026-33017, an unauthenticated remote code execution vulnerability in Langflow <= 1.8.1. The exploit leverages the `build_public_tmp` endpoint to inject arbitrary code via the `data` parameter, which is executed via `exec()` without sandboxing.

This repository contains a functional exploit for CVE-2026-33017, demonstrating unauthenticated remote code execution in Langflow via the /api/v1/build_public_tmp endpoint. The exploit crafts a malicious flow definition with embedded Python code that executes arbitrary commands on the target system.