Vulnerabilities > Monospace > Directus
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-08 | CVE-2024-47822 | Information Exposure Through Log Files vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 4.2 |
| 2024-08-15 | CVE-2024-6534 | Authorization Bypass Through User-Controlled Key vulnerability in Monospace Directus 10.13.0 Directus v10.13.0 allows an authenticated external attacker to modify presets created by the same user to assign them to another user. | 4.3 |
| 2024-08-15 | CVE-2024-6533 | Cross-site Scripting vulnerability in Monospace Directus 10.13.0 Directus v10.13.0 allows an authenticated external attacker to execute arbitrary JavaScript on the client. | 5.4 |
| 2024-07-08 | CVE-2024-39896 | Unspecified vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 5.3 |
| 2024-07-08 | CVE-2024-39895 | Unspecified vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 6.5 |
| 2024-07-08 | CVE-2024-39699 | Server-Side Request Forgery (SSRF) vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 5.0 |
| 2024-06-03 | CVE-2024-36128 | Improper Check for Unusual or Exceptional Conditions vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 7.5 |
| 2024-05-14 | CVE-2024-34708 | Unspecified vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 4.9 |
| 2024-05-14 | CVE-2024-34709 | Insufficient Session Expiration vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 5.4 |
| 2024-03-12 | CVE-2024-28238 | Unspecified vulnerability in Monospace Directus Directus is a real-time API and App dashboard for managing SQL database content. | 2.3 |