Vulners
Lucene search
The vulnerability of the application layer in real-time content management system SQL Directus, related to the use of incorrect alias names, allows attackers to bypass the password protection for arbitrary users.
🗓️ 18 Mar 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec🔗 bdu.fstec.ru👁 2 Views
| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
 | CVE-2024-27295 | 1 Mar 202417:26 | – | circl |
 | Directus Security Vulnerabilities | 1 Mar 202400:00 | – | cnnvd |
 | CVE-2024-27295 | 1 Mar 202415:37 | – | cve |
 | CVE-2024-27295 Directus MySQL accent insensitive email matching | 1 Mar 202415:37 | – | cvelist |
 | EUVD-2024-0993 | 3 Oct 202520:07 | – | euvd |
 | Directus has MySQL accent insensitive email matching | 1 Mar 202416:58 | – | github |
 | CVE-2024-27295 | 1 Mar 202416:15 | – | nvd |
 | CVE-2024-27295 Directus MySQL accent insensitive email matching | 1 Mar 202415:37 | – | osv |
| GHSA-QW9G-7549-7WG5 Directus has MySQL accent insensitive email matching | 1 Mar 202416:58 | – | osv |
 | Design/Logic Flaw | 1 Mar 202416:15 | – | prion |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
18 Mar 2024 00:00Current
7.6High risk
Vulners AI Score7.6
CVSS 38.2
CVSS 28.5
EPSS0.00702