Vulnerabilities > Monospace > Directus > 2.2.0

DATE CVE VULNERABILITY TITLE RISK
2024-07-08 CVE-2024-39699 Server-Side Request Forgery (SSRF) vulnerability in Monospace Directus
Directus is a real-time API and App dashboard for managing SQL database content.
network
low complexity
monospace CWE-918
5.0
5.0
2023-04-04 CVE-2020-19850 Resource Exhaustion vulnerability in Monospace Directus 2.2.0
An issue found in Directus API v.2.2.0 allows a remote attacker to cause a denial of service via a great amount of HTTP requests.
network
low complexity
monospace CWE-400
6.5
6.5
2022-12-26 CVE-2022-26969 Unspecified vulnerability in Monospace Directus
In Directus before 9.7.0, the default settings of CORS_ORIGIN and CORS_ENABLED are true.
network
low complexity
monospace
critical
 9.8
9.8
2022-08-19 CVE-2022-36031 Unspecified vulnerability in Monospace Directus
Directus is a free and open-source data platform for headless content management.
network
low complexity
monospace
6.5
6.5