dify 跨站脚本漏洞

Dify is an open-source LLM application development platform developed by LangGenius. Versions of Dify prior to 1.13.1 had a cross-site scripting vulnerability. This vulnerability stemmed from the POST /api/files/upload method, which allowed unauthenticated users to upload SVG files containing...