CVE-2026-28797
RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. In versions 0.24.0 and prior, a Server-Side Template Injection (SSTI) vulnerability exists in RAGFlow's Agent workflow Text Processing (StringTransform) and Message components. These components use Python's jinja2.Template (unsandboxed) to render user-supplied templates, allowing any authenticated user to execute arbitrary operating system commands on the server. At time of publication, there are no publicly available patches.
Vendor
-
Product
-
CWE
Yayın Tarihi
2026-04-03 22:16:26
Güncelleme
2026-04-07 13:20:55
Source Identifier
security-advisories@github.com
KEV Date Added
-