Vulnerabilities > Dify

DATE	CVE	VULNERABILITY TITLE	RISK
2025-03-20	CVE-2024-11822	Unspecified vulnerability in Dify 0.9.1 langgenius/dify version 0.9.1 contains a Server-Side Request Forgery (SSRF) vulnerability. network low complexity dify	7.5
2025-03-20	CVE-2025-0185	Code Injection vulnerability in Dify A vulnerability in the Dify Tools' Vanna module of the langgenius/dify repository allows for a Pandas Query Injection in the latest version. network low complexity dify CWE-94	8.8

Vulnerabilities > Dify {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dify"}]}