CVE-2024-39699 | Directus up to 10.9.2 server-side request forgery

Posted by Angelo Barbosa | Jul 8, 2024 | CVE

A vulnerability has been found in Directus up to 10.9.2 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to server-side request forgery.

This vulnerability is known as CVE-2024-39699. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39699 | Directus up to 10.9.2 server-side request forgery

Related Posts

CVE-2023-7008 | systemd-resolved Unsigned Name Response data authenticity

CVE-2024-3850 | Uniview NVR301-04S2-P4 prior NVR-B3801.20.17.240507 cross site scripting (icsa-24-156-01)

CVE-2024-46047 | Tenda FH451 1.0.0.9 fromDhcpListClient stack-based overflow

CVE-2023-7039 | Beijing Baichuo S210 up to 20231210 /importexport.php sql injection