CVE-2025-53886

Name of the Vulnerable Software and Affected Versions: Directus versions 9.0.0 through 11.8.9

Description: Directus is a real-time API and App dashboard for managing SQL database content. When using Directus Flows with the WebHook trigger, all incoming request details, including security-sensitive data like access and refresh tokens in cookies, are logged. Malicious administrators with access to the logs can hijack user sessions within the token expiration time after triggering the Flow.

Recommendations: Update to Directus version 11.9.0 or later.