Dify Improper Authorization Vulnerability in Conversation Deletion Allowing Unauthorized Chat History Removal

An authorization vulnerability has been identified in Dify, an open-source platform for developing applications with large language models (LLMs). This issue, present in versions prior to 1.13.1, allows any Dify-authenticated user to delete another user's chat history. The vulnerability arises from inadequate authorization checks in the 'DELETE /console/api/installed-apps/<appId>/conversations/<conversationId>' API endpoint. Exploitation involves sending a deletion request for a conversation ID obtained from the victim's chat history.

Impact

Exploitation of this vulnerability allows for unauthorized deletion of chat conversations, potentially leading to loss of important dialogue history.

Reproduction

To reproduce this vulnerability, first create an application on the Dify platform and publish it. Then, as an authenticated user, initiate a chat with the application and send a message. Using the browser's developer tools, intercept the request to the conversation API to retrieve the 'conversationId' of the chat just created. With this ID, send a DELETE request to the conversation deletion endpoint, including the necessary authentication tokens. Upon refreshing the chat interface, the deleted conversation will no longer be visible.

Remediation

Users can upgrade to Dify version 1.13.1 or later, where this vulnerability has been patched.