CVE-2025-55746 Directus allows unauthenticated file upload and file modification due to lacking input sanitization

Directus is a real-time API and App dashboard for managing SQL database content. From 10.8.0 to before 11.9.3, a vulnerability exists in the file update mechanism which allows an unauthenticated actor ...

Continue Reading

August 20, 2025

EUVD-2011-5258

Foxit PDF Reader <  4.3.1.0218 exposes a JavaScript API function, createDataObject(), that allows untrusted PDF content to write arbitrary files anywhere on disk. By embedding a malicious PDF ...

Continue Reading

August 20, 2025

CVE-2025-8309

creation_timestamp| type| source ---|---|--- 2025-08-20 17:23:46+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

CVE-2025-9040

creation_timestamp| type| source ---|---|--- 2025-08-20 16:55:07+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

CVE-2025-9037

creation_timestamp| type| source ---|---|--- 2025-08-20 16:55:07+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

EUVD-2011-5250

Spreecommerce versions prior to 0.50.x contain a remote command execution vulnerability in the API's search functionality. Improper input sanitation allows attackers to inject arbitrary shell com ...

Continue Reading

August 20, 2025

CVE-2025-55746 Directus allows unauthenticated file upload and file modification due to lacking input sanitization

Directus is a real-time API and App dashboard for managing SQL database content. From 10.8.0 to before 11.9.3, a vulnerability exists in the file update mechanism which allows an unauthenticated actor ...

Continue Reading

August 20, 2025

CISCO-SA-20180328-SMI2

creation_timestamp| type| source ---|---|--- 2025-08-20 16:42:51+00:00| seen|...Read More ...

Continue Reading

August 20, 2025

1 229 230 231 232 233 9,321

Back to Main
Subscribe for the latest news: