DifyTap Flaws Expose AI Chats Across Tenants

Four vulnerabilities in Dify, an open-source agentic workflow platform with over 146,000 GitHub stars, allow attackers to read AI conversations from other customers' applications without authentication. Two flaws are critical severity, three carry cross-tenant impact, and one exploits a two-year-old PDFium bug (CVE-2024-5846, CVSS 8.8).