CVE-2025-56520
published 2025-09-30CVE-2025-56520: Dify v1.6.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.RemoteFileUploadApi. A different…
PriorityP278medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
0.65%
46.5th percentile
Dify v1.6.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.RemoteFileUploadApi. A different vulnerability than CVE-2025-29720.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dify | dify | — | — |
Detection & IOCsextracted from sources · hover to see the quote
urlGET /console/api/remote-files/http%3A%2F%2F{{interactsh-url}}%2Ftest HTTP/1.1
path/console/api/remote-files/
sigma
id: CVE-2025-56520
info:
name: Dify v1.6.0 - Server-Side Request Forgery
author: 0x_Akoko
severity: high
description: |
Dify v1.6.0 contains a server side request forgery caused by improper validation in controllers.console.remote_files.RemoteFileUploadApi, letting attackers make arbitrary requests from the server, exploit requires network access.
http:
- raw:
- |
GET /console/api/remote-files/http%3A%2F%2F{{interactsh-url}}%2Ftest HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: word
part: body
words:
- "file_type"
- "file_length"
condition: and
- type: word
part: content_type
words:
- "application/json"
- type: word
part: interactsh_protocol
words:
- "http"
- "dns"
condition: or
- type: status
status:
- 200- →SSRF is triggered via the RemoteFileUploadApi endpoint by passing a URL-encoded external URL as a path parameter to /console/api/remote-files/. Monitor for outbound HTTP/DNS requests originating from the Dify server process following requests to this path.
- →A successful SSRF probe returns HTTP 200 with a JSON body containing both 'file_type' and 'file_length' fields and Content-Type: application/json. Use these response characteristics to confirm exploitation.
- →Out-of-band detection: monitor for unexpected HTTP or DNS callbacks from the Dify server host to external/internal infrastructure after requests to /console/api/remote-files/ with a URL-encoded value in the path.
- →Use Shodan query 'http.title:"Dify"' or FOFA query 'title="Dify"' to identify internet-exposed Dify instances that may be targeted.
- ·The NVD entry scores this CVE as MEDIUM (5.3), while the Nuclei template author rates it HIGH (9.3, CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N). Defenders should note the discrepancy and assess based on their network exposure.
- ·This is explicitly noted as a different vulnerability from CVE-2025-29720, which also affects Dify's remote file upload functionality. Ensure both CVEs are patched independently. ↗
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
vulncheck4.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-x284-mqwh-m8wm: Dify v1
ghsa_unreviewed·2025-09-30·CVSS 4.8
CVE-2025-56520 [MEDIUM] CWE-918 GHSA-x284-mqwh-m8wm: Dify v1
Dify v1.6.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.RemoteFileUploadApi. A different vulnerability than CVE-2025-29720.
VulnCheck
dify dify Server-Side Request Forgery (SSRF)
vulncheck·2025·CVSS 4.8
CVE-2025-56520 [MEDIUM] dify dify Server-Side Request Forgery (SSRF)
dify dify Server-Side Request Forgery (SSRF)
Dify v1.6.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.RemoteFileUploadApi. A different vulnerability than CVE-2025-29720.
Affected: dify dify
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://tracker.crowdsec.net/cves/CVE-2025-56520
No detection rules found.
Nuclei
Dify v1.6.0 - Server-Side Request Forgery
nuclei·CVSS 5.3
CVE-2025-56520 [MEDIUM] Dify v1.6.0 - Server-Side Request Forgery
Dify v1.6.0 - Server-Side Request Forgery
Dify v1.6.0 contains a server side request forgery caused by improper validation in controllers.console.remote_files.RemoteFileUploadApi, letting attackers make arbitrary requests from the server, exploit requires network access.
Template:
id: CVE-2025-56520
info:
name: Dify v1.6.0 - Server-Side Request Forgery
author: 0x_Akoko
severity: high
description: |
Dify v1.6.0 contains a server side request forgery caused by improper validation in controllers.console.remote_files.RemoteFileUploadApi, letting attackers make arbitrary requests from the server, exploit requires network access.
impact: |
Attackers can make arbitrary requests from the server, potentially accessing internal resources or sensitive data.
remediation: |
Update to the latest ver
Wiz
CVE-2026-28288 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.3
CVE-2026-28288 [MEDIUM] CVE-2026-28288 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-28288 :
Dify vulnerability analysis and mitigation
Dify is an open-source LLM app development platform. Prior to 1.9.0, responses from the Dify API to existing and non-existent accounts differ, allowing an attacker to enumerate email addresses registered with Dify. Version 1.9.0 fixes the issue.
Source : NVD
## 5.5
Score
Published February 27, 2026
Severity MEDIUM
CNA Score 5.5
Affected Technologies
Dify
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 63.1
Exploitation Probability (EPSS) 0.4
Affected packages and libraries
cpe:2.3:a:dify:dify
Sources
Linux Severity MEDIUM Has Fix Added at: Mar 02, 2026
Windows Severity MEDIUM Has Fix Added at: Mar 02, 2026
Linux Sev
Wiz
CVE-2026-21866 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.3
CVE-2026-21866 [MEDIUM] CVE-2026-21866 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-21866 :
Dify vulnerability analysis and mitigation
Dify is an open-source LLM app development platform. Prior to 1.11.2, Dify is vulnerable to a stored XSS issue when rendering Mermaid diagrams within chats. This occurs because Dify’s default Mermaid configuration uses securityLevel: loose, which allows potentially unsafe content to execute. This vulnerability is fixed in 1.11.2.
Source : NVD
## 5.1
Score
Published March 3, 2026
Severity MEDIUM
CNA Score 5.1
Affected Technologies
Dify
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 9.2
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:dify:dify
Sources
Linux Severity MEDIUM Has Fix Added at
Wiz
CVE-2026-26023 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.3
CVE-2026-26023 [MEDIUM] CVE-2026-26023 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-26023 :
Dify vulnerability analysis and mitigation
Dify is an open-source LLM app development platform. Prior to 1.13.0, a cross site scripting vulnerability has been found in the web application chat frontend when using echarts. User or llm inputs containing echarts containing a specific javascript payload will be executed. This vulnerability is fixed in 1.13.0.
Source : NVD
## 5.3
Score
Published February 11, 2026
Severity MEDIUM
CNA Score 5.3
Affected Technologies
Dify
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.8
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:dify:dify
Sources
Linux Severity MEDIUM Has Fix Added at: Feb 24, 20
Wiz
CVE-2025-67732 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.3
CVE-2025-67732 [MEDIUM] CVE-2025-67732 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-67732 :
Dify vulnerability analysis and mitigation
Dify is an open-source LLM app development platform. Prior to version 1.11.0, the API key is exposed in plaintext to the frontend, allowing non-administrator users to view and reuse it. This can lead to unauthorized access to third-party services, potentially consuming limited quotas. Version 1.11.0 fixes the issue.
Source : NVD
## 8.4
Score
Published January 5, 2026
Severity HIGH
CNA Score 8.4
Affected Technologies
Dify
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 15.5
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
cpe:2.3:a:dify:dify
Sources
Linux Severity MEDIUM Has Fix Added at: Feb 24, 202
2025-09-30
Published
Exploited in the wild