CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/04/16 4:11 a.m.•12 views

CVE-2025-29720

Dify v1.0 was discovered to contain a Server-Side Request Forgery SSRF via the component controllers.console.remotefiles.RemoteFileUploadApi...

4.8CVSS7.5AI score0.00068EPSS

Exploits1References1

OSV•added 2025/04/14 5:15 p.m.•1 views

CVE-2025-29720

Dify v1.0 was discovered to contain a Server-Side Request Forgery SSRF via the component controllers.console.remotefiles.RemoteFileUploadApi...

4.8CVSS7.6AI score

Exploits0References2

NVD•added 2025/04/14 5:15 p.m.•10 views

CVE-2025-29720

Dify v1.0 was discovered to contain a Server-Side Request Forgery SSRF via the component controllers.console.remotefiles.RemoteFileUploadApi...

4.8CVSS0.00068EPSS

Exploits1References2

Cvelist•added 2025/04/14 12:0 a.m.•9 views

CVE-2025-29720

Dify v1.0 was discovered to contain a Server-Side Request Forgery SSRF via the component controllers.console.remotefiles.RemoteFileUploadApi...

0.00068EPSS

Exploits1References2

CVE•added 2025/04/14 12:0 a.m.•72 views

CVE-2025-29720

CVE-2025-29720 affects Dify v1.0 with a Server-Side Request Forgery via controllers.console.remote_files.RemoteFileUploadApi. Root cause: SSRF in that API component. Impact per provided metrics: CVSS 3.1 base score 4.8 (Medium); attack vector Local, user interaction required; confidentiality, int...

4.8CVSS7.5AI score0.00068EPSS

In wildExploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by