CVE-2026-34082 | langgenius dify up to 1.13.0 Chat History conversations authorization (GHSA-fxq3-hh7x-c63p)

Inserito da Angelo Barbosa | Apr 21, 2026 | CVE

A vulnerability was found in langgenius dify up to 1.13.0 and classified as problematic. Impacted is an unknown function of the file /console/api/installed-apps/conversations/ of the component Chat History Handler. Such manipulation leads to incorrect authorization.

This vulnerability is listed as CVE-2026-34082. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-34082 | langgenius dify up to 1.13.0 Chat History conversations authorization (GHSA-fxq3-hh7x-c63p)

Post correlati

CVE-2024-11178 | Login with OTP Plugin up to 1.4.2 on WordPress improper authentication

CVE-2024-48229 | funadmin 5.0.2 Curd One Click Command Mode Plugin sql injection

CVE-2024-28165 | SAP BusinessObjects Business Intelligence Platform 430/440 Opendocument URL cross site scripting

CVE-2024-56698 | Linux Kernel up to 6.12.1 dwc3_request null pointer dereference