Default Credentials Vulnerability in Dify by LangGenius
CVE-2025-56157

Currently unrated

Key Information:

Vendor: LangGenius
Status: Dify
Vendor: CVE Published:; 18 December 2025

What is CVE-2025-56157?

The vulnerable Dify application allows unauthorized access due to default credentials hardcoded in the docker-compose.yaml file, exposing PostgreSQL username and password to potential attackers. This configuration oversight can result in serious security risks, as attackers may exploit these credentials to gain unauthorized access to sensitive data. Users of Dify versions up to 1.5.1 are particularly at risk and should take immediate corrective action to secure their installations.

References

http://dify.com

https://github.com/langgenius/dify

https://gist.github.com/Cristliu/216ddbadaf3258498c93d408...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 18, 2025
Vulnerability Reserved
Aug 16, 2025

JSON