CVE-2026-41950

< 1.14.0

Dify before version 1.14.0 contains an authorization bypass vulnerability that allows authenticated users to read the full content

6.5MEDIUM

CVE-2026-42138

< 1.13.1

Dify is an open-source LLM app development platform. Prior to version 1.13.1, using the method POST /api/files/upload, any unauthe

6.1MEDIUM

CVE-2026-34082

< 1.13.1

Dify is an open-source LLM app development platform. Prior to 1.13.1, the method `DELETE /console/api/installed-apps/<appId>/conve

4.3MEDIUM

CVE-2026-21866

< 1.11.2

Dify is an open-source LLM app development platform. Prior to 1.11.2, Dify is vulnerable to a stored XSS issue when rendering Merm

5.4MEDIUM

CVE-2026-28288

< 1.9.0

Dify is an open-source LLM app development platform. Prior to 1.9.0, responses from the Dify API to existing and non-existent acco

5.3MEDIUM

CVE-2026-26023

<= 1.11.4

Dify is an open-source LLM app development platform. Prior to 1.13.0, a cross site scripting vulnerability has been found in the w

6.1MEDIUM

CVE-2025-67732

< 1.11.0

Dify is an open-source LLM app development platform. Prior to version 1.11.0, the API key is exposed in plaintext to the frontend,

6.5MEDIUM

CVE-2025-63387

all versions

Dify v1.9.1 is vulnerable to Insecure Permissions. An unauthenticated attacker can directly send HTTP GET requests to the /console

7.5HIGH

CVE-2025-56157

<= 1.5.1

Default credentials in Dify thru 1.5.1. PostgreSQL username and password specified in the docker-compose.yaml file included in its

9.8CRITICAL

CVE-2025-63388

all versions

A Cross-Origin Resource Sharing (CORS) misconfiguration vulnerability exists in Dify v1.9.1 in the /console/api/system-features en

9.1CRITICAL

CVE-2025-63386

all versions

A Cross-Origin Resource Sharing (CORS) misconfiguration vulnerability exists in Dify v1.9.1 in the /console/api/setup endpoint. Th

9.1CRITICAL

CVE-2025-11750

all versions

In langgenius/dify-web version 1.6.0, the authentication mechanism reveals the existence of user accounts by returning different e

5.3MEDIUM

CVE-2025-58747

< 1.9.2

Dify is an LLM application development platform. In Dify versions through 1.9.1, the MCP OAuth component is vulnerable to cross-si

6.1MEDIUM

CVE-2025-56520

all versions

Dify v1.6.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.Remo

5.3MEDIUM

CVE-2025-59422

all versions

Dify is an open-source LLM app development platform. In version 1.8.1, a broken access control vulnerability on the /console/api/a

3.1LOW

CVE-2025-3467

< 1.1.3

An XSS vulnerability exists in langgenius/dify versions prior to 1.1.3, specifically affecting Firefox browsers. This vulnerabilit

5.4MEDIUM

CVE-2025-3466

>= 1.1.0 and < 1.1.3

langgenius/dify versions 1.1.0 to 1.1.2 are vulnerable to unsanitized input in the code node, allowing execution of arbitrary code

7.2HIGH

CVE-2025-49149

all versions

Dify is an open-source LLM app development platform. In version 1.2.0, there is insufficient filtering of user input by web applic

6.1MEDIUM

CVE-2025-43854

<= 0.6.8

DIFY is an open-source LLM app development platform. Prior to version 1.3.0, a clickjacking vulnerability was found in the default

6.1MEDIUM

CVE-2025-43862

< 0.6.12

Dify is an open-source LLM app development platform. Prior to version 0.6.12, a normal user is able to access and modify APP orche

7.6HIGH

CVE-2025-32796

<= 0.6.8

Dify is an open-source LLM app development platform. Prior to version 0.6.12, a vulnerability was identified in the DIFY where nor

6.5MEDIUM

CVE-2025-32795

< 0.6.12

Dify is an open-source LLM app development platform. Prior to version 0.6.12, a vulnerability was identified in the DIFY where nor

6.5MEDIUM

CVE-2025-32790

< 0.6.13

Dify is an open-source LLM app development platform. In versions 0.6.8 and prior, a vulnerability was identified in the DIFY AI wh

6.3MEDIUM

CVE-2025-29720

all versions

Dify v1.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.Remote

4.8MEDIUM

CVE-2025-1796

all versions

A vulnerability in langgenius/dify v0.10.1 allows an attacker to take over any account, including administrator accounts, by explo

8.8HIGH

CVE-2025-0185

all versions

A vulnerability in the Dify Tools' Vanna module of the langgenius/dify repository allows for a Pandas Query Injection in the lates

8.8HIGH

CVE-2025-0184

< 0.11.0

A Server-Side Request Forgery (SSRF) vulnerability was identified in langgenius/dify version 0.10.2. The vulnerability occurs in t

6.5MEDIUM

CVE-2024-12776

all versions

In langgenius/dify v0.10.1, the /forgot-password/resets endpoint does not verify the password reset code, allowing an attacker t

8.1HIGH

CVE-2024-12775

all versions

langgenius/dify version 0.10.1 contains a Server-Side Request Forgery (SSRF) vulnerability in the test functionality for the Creat

6.5MEDIUM

CVE-2024-12039

all versions

langgenius/dify version v0.10.1 contains a vulnerability where there are no limits applied to the number of code guess attempts fo

8.1HIGH

CVE-2024-11850

all versions

A stored cross-site scripting (XSS) vulnerability exists in the latest version of langgenius/dify. The vulnerability is due to imp

5.4MEDIUM

CVE-2024-11824

< 0.12.1

A stored cross-site scripting (XSS) vulnerability exists in langgenius/dify version latest, specifically in the chat log functiona

7.6HIGH

CVE-2024-11822

all versions

langgenius/dify version 0.9.1 contains a Server-Side Request Forgery (SSRF) vulnerability. The vulnerability exists due to imprope

7.5HIGH

CVE-2024-11821

all versions

A privilege escalation vulnerability exists in langgenius/dify version 0.9.1. This vulnerability allows a normal user to modify Or

4.3MEDIUM

CVE-2024-10252

<= 0.9.1

A vulnerability in langgenius/dify versions <=v0.9.1 allows for code injection via internal SSRF requests in the Dify sandbox serv

7.2HIGH