A cluster of five critical path traversal and file upload vulnerabilities in Langflow, all exploitable through the same default unauthenticated auto-login bypass, allows attackers to write arbitrary files to approximately 7,000 publicly exposed instances. Active exploitation has been documented, with full AI pipeline compromise occurring within 20 hours of initial access. Upgrade to v1.10.0 immediately and disable auto-login on any instance that cannot be patched within hours.