PT-2026-41675
Name of the Vulnerable Software and Affected Versions Dify versions prior to 1.14.2 Description Authenticated users can manipulate requests forwarded to the Plugin Daemon's internal REST API due to insufficient URL path sanitization. By using unencoded dot sequences in task identifiers or...