Security Advisory

CVE-2025-56520

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-30 00:00:00

Last updated 2025-10-01 20:04:03

Assigner mitre

State PUBLISHED

Description

Dify v1.6.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component controllers.console.remote_files.RemoteFileUploadApi. A different vulnerability than CVE-2025-29720.

← Browse all CVEs View on cve.org ↗