CVE-2026-2097 – Flowring｜Agentflow – Arbitrary File Upload

CVE ID : CVE-2026-2097

Published : Feb. 10, 2026, 7:16 a.m. | 1 hour, 5 minutes ago

Description : Agentflow developed by Flowring has an Arbitrary File Upload vulnerability, allowing authenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…