Directus allows unauthenticated file upload and file modification due to lacking input sanitization

Summary A vulnerability exists in the file update mechanism which allows an unauthenticated actor to modify existing files with arbitrary contents (without changes being applied to the files' dat ...

Continue Reading

August 20, 2025

EUVD-2025-25390

A vulnerability was found in the Cryostat HTTP API. Cryostat's HTTP API binds to all network interfaces, allowing possible external visibility and access to the API port if Network Policies are d ...

Continue Reading

August 20, 2025

CVE-2025-50864

creation_timestamp| type| source ---|---|--- 2025-08-20 18:23:31+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

CVE-2025-1139

creation_timestamp| type| source ---|---|--- 2025-08-20 18:18:30+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

CVE-2025-43748

creation_timestamp| type| source ---|---|--- 2025-08-20 18:13:29+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

CVE-2025-43300

creation_timestamp| type| source ---|---|--- 2025-08-20 18:00:58+00:00| seen| https://infosec.exchange/users/applsec/statuses/115062397820436044 2025-08-20 18:00:59+00:00| seen| https://bsky.app/profi ...

Continue Reading

August 20, 2025

CVE-2024-57491

creation_timestamp| type| source ---|---|--- 2025-08-20 18:33:32+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

CVE-2025-1142

creation_timestamp| type| source ---|---|--- 2025-08-20 18:28:31+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

1 227 228 229 230 231 9,321

Back to Main
Subscribe for the latest news: