Dify v1.0 was discovered to contain a Server-Side Request...
Moderate severity
Unreviewed
Published
Apr 14, 2025
to the GitHub Advisory Database
•
Updated Apr 14, 2025
Description
Published by the National Vulnerability Database
Apr 14, 2025
Published to the GitHub Advisory Database
Apr 14, 2025
Last updated
Apr 14, 2025
Dify v1.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.RemoteFileUploadApi.
References