Path Traversal Vulnerability in Dify Plugin by LangGenius
CVE-2026-41948

9.2CRITICAL

Key Information:

Vendor

Langgenius

Status
Dify
Vendor
CVE Published:
18 May 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2026-41948?

Dify, a plugin developed by LangGenius, exhibits a path traversal vulnerability that allows authenticated users to exploit insufficient URL path sanitization. By manipulating requests sent to the internal REST API of the Plugin Daemon, attackers can traverse outside their designated tenant paths using unencoded dot sequences in task identifiers or manipulated filename parameters. This issue can potentially provide access to sensitive internal endpoints, including debug interfaces. It is crucial to note that Dify Cloud offers unauthenticated free self-registration, making it easy for attackers to create accounts and exploit this vulnerability against victim tenants.

Affected Version(s)

dify 0 <= 1.14.1

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2026-41948 - Proof of Concept

References

https://huntr.com/bounties/35b7ad59-e35d-443f-bf77-387bfb...
technical-descriptionexploit
https://github.com/langgenius/dify/pull/35796
issue-tracking
https://www.vulncheck.com/advisories/dify-path-traversal-...
third-party-advisory

CVSS V4

Score:
9.2
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Ido Shani and Gal Zaban of Zafran Security
.