{"uuid": "4ff01ab5-ca02-4f5e-955e-2850fa4d14be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41948", "type": "seen", "source": "https://bsky.app/profile/modat-io.bsky.social/post/3moxetqormc2l", "content": "\u26a0\ufe0f DifyTap: 4 Dify vulnerabilities that could expose AI conversations and files across tenants under certain conditions. Two require no auth. Highest-rated is CVE-2026-41948 (CVSS 9.4). Fixed in 1.14.2, except CVE-2026-41948 (next release). Query: product=dify", "creation_timestamp": "2026-06-23T12:14:35.536012Z"}