2 matches found
CVE-2021-26595
creationtimestamp| type| source ---|---|--- 2021-02-23 22:35:15+00:00| seen| https://t.me/cibsecurity/24024...
CVE-2021-26595
CVE-2021-26595 affects Directus 8.x–8.8.1, where the endpoint commonly called at connection time, api-aa, discloses sensitive environment details (CMS version, PHP version, and DBMS name). The issue is that this information disclosure occurs because api-aa is invoked automatically, with the note ...