<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Dify - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/tags/dify/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Fri, 10 Jul 2026 19:23:06 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/tags/dify/feed.xml" rel="self" type="application/rss+xml"/><item><title>Dify MyScale Backend SQL Injection Vulnerability (CVE-2026-61461)</title><link>https://feed.craftedsignal.io/briefs/2026-07-dify-sql-injection/</link><pubDate>Fri, 10 Jul 2026 19:23:06 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-dify-sql-injection/</guid><description>A high-severity SQL injection vulnerability, CVE-2026-61461, exists in the MyScale vector store backend of Dify versions prior to 1.16.0-rc1, allowing attackers with low privileges to execute arbitrary SQL commands via unsanitized search parameters, leading to unauthorized data manipulation in the underlying ClickHouse database.</description><content:encoded><![CDATA[<p>Dify, an open-source LLM application development platform, is affected by CVE-2026-61461, a high-severity SQL injection vulnerability discovered in versions prior to 1.16.0-rc1. This flaw resides in the MyScale vector store backend, specifically within the <code>search_by_full_text</code> method. The vulnerability arises because search parameters supplied to this method are not properly sanitized or parameterized, allowing an attacker with low privileges (CVSS:PR:L) to inject arbitrary SQL code. Successful exploitation can lead to unauthorized reading, modification, or deletion of sensitive data stored in the underlying ClickHouse database, posing a significant risk to data integrity and confidentiality within affected Dify deployments.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker identifies a Dify instance running a vulnerable version (prior to 1.16.0-rc1) configured to use the MyScale vector store backend.</li>
<li>The attacker gains low-privileged access to the Dify application, as indicated by the CVSS 'PR:L' metric.</li>
<li>The attacker crafts a malicious HTTP request targeting a Dify endpoint that utilizes the <code>search_by_full_text</code> method in the MyScale backend.</li>
<li>The request includes unsanitized search parameters containing SQL injection payloads, such as special characters, keywords like <code>UNION SELECT</code>, or comments.</li>
<li>The vulnerable <code>search_by_full_text</code> method processes these parameters directly, without proper escaping or prepared statements.</li>
<li>The injected SQL commands are then executed by the underlying ClickHouse database.</li>
<li>The attacker achieves unauthorized data access, modification, or deletion within the ClickHouse database, impacting confidentiality, integrity, or availability.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of CVE-2026-61461 can lead to severe consequences for organizations using affected Dify versions. Attackers can gain comprehensive control over the underlying ClickHouse database, enabling them to exfiltrate sensitive user data, application configurations, or proprietary information. Furthermore, they can modify or delete critical data, which could lead to severe data integrity issues, service disruption, and potential legal or compliance penalties. The high CVSS score of 8.8 reflects the significant potential for impact on confidentiality, integrity, and availability.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch CVE-2026-61461 by upgrading Dify to version 1.16.0-rc1 or newer immediately, as referenced in the provided GitHub releases.</li>
<li>Deploy the Sigma rule &quot;Detect CVE-2026-61461 Exploitation - Dify MyScale SQL Injection&quot; from this brief to your SIEM to detect attempts at SQL injection targeting Dify's <code>search_by_full_text</code> method.</li>
<li>Monitor web server access logs for unusual request patterns, specifically looking for SQL injection keywords and special characters in <code>cs-uri-query</code> parameters, as indicated by the log source <code>webserver</code>.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>sql-injection</category><category>web-vulnerability</category><category>dify</category><category>clickhouse</category></item></channel></rss>