Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Directus 8.x through 8.8.1, an attacker can learn sensitive information such as the version of the CMS, the PHP version used by the site, and the name of the DBMS, simply by view the result of the api-aa, called automatically upon a connection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Directus 安全漏洞
Vulnerability Description
Directusv8是GlobalDirectusv8开源的一个应用系统提供了一个CMS建站系统 Directus 8.x through 8.8.1 存在安全漏洞,攻击者可利用该漏洞可以通过查看api-aa的结果来了解敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A