CVE-2025-64749 | Directus up to 11.12.x REST API /items/ information exposure (GHSA-cph6-524f-3hgr)

A vulnerability, which was classified as problematic, was found in Directus up to 11.12.x. This issue affects some unknown processing of the file /items/ of the component REST API. Executing manipulation can lead to information exposure through discrepancy.

This vulnerability is handled as CVE-2025-64749. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More