CVE-2025-55746 | Directus up to 11.9.2 UI file inclusion

Inserito da Angelo Barbosa | Ago 20, 2025 | CVE

A vulnerability classified as critical was found in Directus up to 11.9.2. The impacted element is an unknown function of the component UI. Executing manipulation can lead to file inclusion.

This vulnerability is handled as CVE-2025-55746. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2025-55746 | Directus up to 11.9.2 UI file inclusion

Post correlati

CVE-2024-32848 | Ivanti EPM 2024/up to 2022 SU5 sql injection

CVE-2024-38386 | OpenHarmony up to 4.1.0 Pre-installed Apps out-of-bounds write

CVE-2024-22223 | Dell Unity up to 5.3 svc_cbr os command injection (dsa-2024-042)

CVE-2025-24372 | CKAN up to 2.10.6/2.11.1 File cross site scripting