Home/Product/monospace directus
Product

monospace directus

65 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-39943
< 11.17.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, Directus stores revision record
6.5MEDIUM
 CVE-2026-39942
< 11.17.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, the PATCH /files/{id} endpoint
8.5HIGH
 CVE-2026-35442
< 11.17.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, aggregate functions (min, max)
8.1HIGH
 CVE-2026-35441
< 11.17.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, Directus' GraphQL endpoints (/g
6.5MEDIUM
 CVE-2026-35413
< 11.16.1
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.1, when GRAPHQL_INTROSPECTION=fals
5.3MEDIUM
 CVE-2026-35412
< 11.16.1
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.1, Directus' TUS resumable upload
7.1HIGH
 CVE-2026-35411
< 11.16.1
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.1, Directus is vulnerable to an op
4.3MEDIUM
 CVE-2026-35410
< 11.16.1
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.1, an open redirect vulnerability
6.1MEDIUM
 CVE-2026-35409
< 11.16.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.0, a Server-Side Request Forgery (
7.7HIGH
 CVE-2026-35408
< 11.17.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, Directus's Single Sign-On (SSO)
8.7HIGH
 CVE-2026-26185
< 11.15.0
Directus is a real-time API and App dashboard for managing SQL database content. Before 11.14.1, a timing-based user enumeration v
5.3MEDIUM
 CVE-2026-22032
< 11.14.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to version 11.14.0, an open redirect vulner
4.3MEDIUM
 CVE-2025-64749
< 11.13.0
Directus is a real-time API and App dashboard for managing SQL database content. An observable difference in error messaging was f
4.3MEDIUM
 CVE-2025-64748
< 11.13.0
Directus is a real-time API and App dashboard for managing SQL database content. A vulnerability in versions prior to 11.13.0 allo
6.5MEDIUM
 CVE-2025-64747
< 11.13.0
Directus is a real-time API and App dashboard for managing SQL database content. A stored cross-site scripting (XSS) vulnerability
5.5MEDIUM
 CVE-2025-64746
< 11.13.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to version 11.13.0, Directus does not prope
4.6MEDIUM
 CVE-2025-55746
>= 10.8.0 and < 11.9.3
Directus is a real-time API and App dashboard for managing SQL database content. From 10.8.0 to before 11.9.3, a vulnerability exi
9.3CRITICAL
 CVE-2025-53889
>= 9.12.0 and < 11.9.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.12.0 and prior to version 1
6.5MEDIUM
 CVE-2025-53887
>= 9.0.0 and < 11.9.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.0.0 and prior to version 11
5.3MEDIUM
 CVE-2025-53886
>= 9.0.0 and < 11.9.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.0.0 and prior to version 11
4.5MEDIUM
 CVE-2025-53885
>= 9.0.0 and < 11.9.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.0.0 and prior to version 11
4.2MEDIUM
 CVE-2025-30353
>= 9.12.0 and < 11.5.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.12.0 and prior to version 1
8.6HIGH
 CVE-2025-30352
>= 9.0.1 and < 11.5.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.0.0-alpha.4 and prior to ve
5.3MEDIUM
 CVE-2025-30351
>= 10.10.0 and < 11.5.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 10.10.0 and prior to version
3.5LOW
 CVE-2025-30350
>= 9.22.0 and < 11.5.0
Directus is a real-time API and App dashboard for managing SQL database content. The @directus/storage-driver-s3 package startin
5.3MEDIUM
 CVE-2025-30225
>= 9.22.0 and < 11.5.0
Directus is a real-time API and App dashboard for managing SQL database content. The @directus/storage-driver-s3 package startin
5.3MEDIUM
 CVE-2025-27089
>= 11.0.0 and < 11.1.2
Directus is a real-time API and App dashboard for managing SQL database content. In affected versions if there are two overlapping
5.4MEDIUM
 CVE-2025-24353
< 11.2.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to version 11.2.0, when sharing an item, a
5.0MEDIUM
 CVE-2024-54151
>= 11.0.0 and < 11.3.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 11.0.0 and prior to version 1
7.5HIGH
 CVE-2024-54128
>= 10.10.0 and < 10.13.4
Directus is a real-time API and App dashboard for managing SQL database content. The Comment feature has implemented a filter to p
5.7MEDIUM
 CVE-2024-47822
< 10.13.2
Directus is a real-time API and App dashboard for managing SQL database content. Access tokens from query strings are not redacted
4.2MEDIUM
 CVE-2024-46990
< 10.13.3
Directus is a real-time API and App dashboard for managing SQL database content. When relying on blocking access to localhost usin
5.0MEDIUM
 CVE-2024-45596
< 10.13.3
Directus is a real-time API and App dashboard for managing SQL database content. An unauthenticated user can access credentials of
7.4HIGH
 CVE-2024-6534
all versions
Directus v10.13.0 allows an authenticated external attacker to modify presets created by the same user to assign them to another u
4.3MEDIUM
 CVE-2024-6533
all versions
Directus v10.13.0 allows an authenticated external attacker to execute arbitrary JavaScript on the client. This is possible becaus
5.4MEDIUM
 CVE-2024-39896
< 10.13.0
Directus is a real-time API and App dashboard for managing SQL database content. When relying on SSO providers in combination with
7.5HIGH
 CVE-2024-39895
< 10.12.0
Directus is a real-time API and App dashboard for managing SQL database content. A denial of service (DoS) attack by field duplica
6.5MEDIUM
 CVE-2024-39701
>= 9.23.0 and < 10.6.0
Directus is a real-time API and App dashboard for managing SQL database content. Directus >=9.23.0, <=v10.5.3 improperly handles _
6.3MEDIUM
 CVE-2024-39699
< 10.9.3
Directus is a real-time API and App dashboard for managing SQL database content. There was already a reported SSRF vulnerability v
5.0MEDIUM
 CVE-2024-36128
< 10.11.2
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 10.11.2, providing a non-numeric length
7.5HIGH
 CVE-2024-34709
< 10.11.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 10.11.0, session tokens function like th
5.4MEDIUM
 CVE-2024-34708
< 10.11.0
Directus is a real-time API and App dashboard for managing SQL database content. A user with permission to view any collection usi
4.9MEDIUM
 CVE-2024-28239
< 10.10.0
Directus is a real-time API and App dashboard for managing SQL database content. The authentication API has a redirect parameter
5.4MEDIUM
 CVE-2024-28238
< 10.10.0
Directus is a real-time API and App dashboard for managing SQL database content. When reaching the /files page, a JWT is passed vi
2.3LOW
 CVE-2024-27296
< 10.8.3
Directus is a real-time API and App dashboard for managing SQL database content. Prior to version 10.8.3, the exact Directus versi
5.3MEDIUM
 CVE-2024-27295
< 10.8.3
Directus is a real-time API and App dashboard for managing SQL database content. The password reset mechanism of the Directus back
8.2HIGH
 CVE-2023-45820
>= 10.4.0 and < 10.6.2
Directus is a real-time API and App dashboard for managing SQL database content. In affected versions any Directus installation th
5.9MEDIUM
 CVE-2023-38503
>= 10.3.0 and < 10.5.0
Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 10.3.0 and prior to version 1
5.7MEDIUM
 CVE-2020-19850
all versions
An issue found in Directus API v.2.2.0 allows a remote attacker to cause a denial of service via a great amount of HTTP requests.
6.5MEDIUM
 CVE-2023-28443
< 9.23.3
Directus is a real-time API and App dashboard for managing SQL database content. Prior to version 9.23.3, the `directus_refresh_to
4.2MEDIUM
 CVE-2023-27481
< 9.16.0
Directus is a real-time API and App dashboard for managing SQL database content. In versions prior to 9.16.0 users with read acces
4.3MEDIUM
 CVE-2023-27474
< 9.23.0
Directus is a real-time API and App dashboard for managing SQL database content. Instances relying on an allow-listed reset URL ar
8.0HIGH
 CVE-2023-26492
< 9.23.0
Directus is a real-time API and App dashboard for managing SQL database content. Directus is vulnerable to Server-Side Request For
5.0MEDIUM
 CVE-2022-26969
< 9.7.0
In Directus before 9.7.0, the default settings of CORS_ORIGIN and CORS_ENABLED are true.
9.8CRITICAL
 CVE-2022-36031
< 9.15.0
Directus is a free and open-source data platform for headless content management. The Directus process can be aborted by having an
6.5MEDIUM
 CVE-2022-23080
>= 9.0.1 and <= 9.6.0
In directus versions v9.0.0-beta.2 through 9.6.0 are vulnerable to server-side request forgery (SSRF) in the media upload function
5.0MEDIUM
 CVE-2022-24814
< 9.7.0
Directus is a real-time API and App dashboard for managing SQL database content. Prior to version 9.7.0, unauthorized JavaScript (
8.8HIGH
 CVE-2022-22117
>= 9.0.1 and <= 9.4.1
In Directus, versions 9.0.0-alpha.4 through 9.4.1 allow unrestricted file upload of .html files in the media upload functionality,
5.4MEDIUM
 CVE-2022-22116
>= 9.0.1 and <= 9.4.1
In Directus, versions 9.0.0-alpha.4 through 9.4.1 are vulnerable to stored Cross-Site Scripting (XSS) vulnerability via SVG file u
5.4MEDIUM
 CVE-2021-29641
>= 8.0.0 and < 8.8.2
Directus 8 before 8.8.2 allows remote authenticated users to execute arbitrary code because file-upload permissions include the ab
8.8HIGH
 CVE-2021-27583
>= 8.0.0 and <= 8.8.1
In Directus 8.x through 8.8.1, an attacker can discover whether a user is present in the database through the password reset featu
5.3MEDIUM
 CVE-2021-26595
>= 8.0.0 and <= 8.8.1
In Directus 8.x through 8.8.1, an attacker can learn sensitive information such as the version of the CMS, the PHP version used by
5.3MEDIUM
 CVE-2021-26594
>= 8.0.0 and <= 8.8.1
In Directus 8.x through 8.8.1, an attacker can switch to the administrator role (via the PATCH method) without any control by the
8.8HIGH
 CVE-2021-26593
>= 8.0.0 and <= 8.8.1
In Directus 8.x through 8.8.1, an attacker can see all users in the CMS using the API /users/{id}. For each call, they get in resp
7.5HIGH
 CVE-2018-10723
all versions
Directus 6.4.9 has a hardcoded admin password for the Admin account because of an INSERT statement in api/schema.sql.
9.8CRITICAL
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh