automatic module_metadata_base.json update

db/modules_metadata_base.json

@@ -112579,6 +112579,66 @@
     "session_types": false,
     "needs_cleanup": true
   },
+  "exploit_multi/http/langflow_rce_cve_2026_27966": {
+    "name": "Langflow RCE",
+    "fullname": "exploit/multi/http/langflow_rce_cve_2026_27966",
+    "aliases": [],
+    "rank": 600,
+    "disclosure_date": "2026-02-25",
+    "type": "exploit",
+    "author": [
+      "weblover12",
+      "Takahiro Yokoyama"
+    ],
+    "description": "The CSV Agent node in Langflow hardcodes allow_dangerous_code=True, which automatically exposes LangChain's Python REPL tool (python_repl_ast).\n          As a result, an attacker can execute arbitrary Python and OS commands on the server via prompt injection, leading to full Remote Code Execution (RCE).",
+    "references": [
+      "CVE-2026-27966",
+      "GHSA-3645-fxcv-hqr4"
+    ],
+    "platform": "Linux,Python,Unix",
+    "arch": "cmd, python",
+    "rport": 7860,
+    "autofilter_ports": [
+      80,
+      8080,
+      443,
+      8000,
+      8888,
+      8880,
+      8008,
+      3000,
+      8443
+    ],
+    "autofilter_services": [
+      "http",
+      "https"
+    ],
+    "targets": [
+      "Linux Command",
+      "Python payload"
+    ],
+    "mod_time": "2026-04-18 12:56:53 +0000",
+    "path": "/modules/exploits/multi/http/langflow_rce_cve_2026_27966.rb",
+    "is_install_path": true,
+    "ref_name": "multi/http/langflow_rce_cve_2026_27966",
+    "check": true,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [
+        "artifacts-on-disk",
+        "ioc-in-logs"
+      ],
+      "Reliability": [
+        "repeatable-session"
+      ]
+    },
+    "session_types": false,
+    "needs_cleanup": null
+  },
   "exploit_multi/http/langflow_unauth_rce_cve_2025_3248": {
     "name": "Langflow AI RCE",
     "fullname": "exploit/multi/http/langflow_unauth_rce_cve_2025_3248",