CVE-2023-38503 - Unauthorized Data Leak via GraphQL Subscriptions in Directus (Exploit & Details)
Directus is a popular, open-source headless CMS that acts as both an app dashboard and real-time API for SQL databases. In 2023, a major authorization
CVE-2023-26492 - How a Simple File Import Exploit in Directus Can Expose Your Internal Network
Directus is an open-source data platform that lets you manage your SQL database content using an easy web interface and a powerful real-time API. It&