CVE-2026-5027

This repository contains a functional exploit for CVE-2026-5027, demonstrating an arbitrary file write vulnerability in Langflow <= 1.8.4 via path traversal in the /api/v2/files endpoint, leading to unauthenticated RCE through cron job manipulation.

The repository contains a functional Python exploit for CVE-2026-5027, demonstrating a path traversal vulnerability in Langflow's file upload endpoint, leading to arbitrary file write and RCE via cron job injection.

The repository contains a functional exploit for CVE-2026-5027, a path traversal vulnerability in Langflow <= 1.8.4. The exploit leverages insufficient sanitization of the 'filename' parameter in the `/api/v2/files` endpoint to achieve arbitrary file write, potentially leading to RCE in default configurations.

The repository contains a functional exploit for CVE-2026-5027, demonstrating a path traversal vulnerability in Langflow <= 1.8.4 that leads to unauthenticated remote code execution via arbitrary file write. The exploit includes detailed technical analysis, root cause, and a working PoC script.