cybercrime.club

cybercrime.clubhttps://cybercrime.club/tags/node.js/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usTue, 07 Apr 2026 10:09:00 -0400Flowise AI Under Active Exploitation: CVSS 10.0 RCE via CustomMCP Node Hits 12,000+ Exposed Instanceshttps://cybercrime.club/posts/flowise-ai-cve-2025-59528-custommcp-rce-cvss-10/Tue, 07 Apr 2026 10:09:00 -0400https://cybercrime.club/posts/flowise-ai-cve-2025-59528-custommcp-rce-cvss-10/Critical unauthenticated RCE in Flowise AI's CustomMCP node (CVE-2025-59528, CVSS 10.0) is under active exploitation. Over 12,000 instances are exposed. Patch to 3.0.6 immediately.Vulnerabilities