Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rangerstudio directus 9.0.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv3
CVE-2022-23080
In directus versions v9.0.0-beta.2 up to and including 9.6.0 are vulnerable to server-side request forgery (SSRF) in the media upload functionality which allows a low privileged user to perform internal network port scans.
Rangerstudio Directus 9.0.0
Rangerstudio Directus
5.4
CVSSv3
CVE-2022-22117
In Directus, versions 9.0.0-alpha.4 up to and including 9.4.1 allow unrestricted file upload of .html files in the media upload functionality, which leads to Cross-Site Scripting vulnerability. A low privileged attacker can upload a crafted HTML file as a profile avatar, and when...
Rangerstudio Directus 9.0.0
Rangerstudio Directus
5.4
CVSSv3
CVE-2022-22116
In Directus, versions 9.0.0-alpha.4 up to and including 9.4.1 are vulnerable to stored Cross-Site Scripting (XSS) vulnerability via SVG file upload in media upload functionality. A low privileged attacker can inject arbitrary javascript code which will be executed in a victim&rsq...
Rangerstudio Directus 9.0.0
Rangerstudio Directus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started