CVE-2025-64748 | Directus up to 11.12.x App Dashboard insertion of sensitive information into sent data (GHSA-8jpw-gpr4-8cmh)

A vulnerability has been found in Directus up to 11.12.x and classified as problematic. Impacted is an unknown function of the component App Dashboard. The manipulation leads to insertion of sensitive information into sent data.

This vulnerability is uniquely identified as CVE-2025-64748. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More