CVE-2025-0185 HIGH

CVE-2025-0185: Pandas Query Injection in langgenius/dify

Vendor Langgenius
Product langgenius/dify
Weakness CWE-94 · Code injection
Published March 20, 2025
Last update March 20, 2025

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A vulnerability in the Dify Tools' Vanna module of the langgenius/dify repository allows for a Pandas Query Injection in the latest version. The vulnerability occurs in the function `vn.get_training_plan_generic(df_information_schema)`, which does not properly sanitize user inputs before executing queries using the Pandas library. This can potentially lead to Remote Code Execution (RCE) if exploited.

Key dates

02Disclosure timeline

March 20, 2025 CVE published
March 20, 2025 Record updated