CVE-2019-13983

Directus 7 API before 2.2.2 has insufficient anti-automation, as demonstrated by lack of a CAPTCHA in core/Directus/Services/AuthService.php and endpoints/Auth.php.

Link	Resource
https://github.com/directus/api/issues/991	Issue Tracking Patch
https://github.com/directus/api/projects/43	Third Party Advisory

Configuration 1

cpe:2.3:a:rangerstudio:directus_7_api:*:*:*:*:*:*:*:*

---

Published : 2019-07-19 03:15

Updated : 2019-07-22 02:05

---

NVD link : CVE-2019-13983

Mitre link : CVE-2019-13983

No products.

CWE-306