Description
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.1, an open redirect vulnerability exists in the login redirection logic. The isLoginRedirectAllowed function fails to correctly identify certain malformed URLs as external, allowing attackers to bypass redirect allow-list validation and redirect users to arbitrary external domains upon successful authentication. This vulnerability is fixed in 11.16.1.
Published: 2026-04-06
Score: 6.1 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-cf45-hxwj-4cfj Directus: Open Redirect via Parser Bypass in OAuth2/SAML Authentication Flow
History

Tue, 07 Apr 2026 00:00:00 +0000

Type Values Removed Values Added
Description Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.1, an open redirect vulnerability exists in the login redirection logic. The isLoginRedirectAllowed function fails to correctly identify certain malformed URLs as external, allowing attackers to bypass redirect allow-list validation and redirect users to arbitrary external domains upon successful authentication. This vulnerability is fixed in 11.16.1.
Title Directus has an Open Redirect via Parser Bypass in OAuth2/SAML Authentication Flow
Weaknesses CWE-184
CWE-601
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-06T21:32:13.985Z

Reserved: 2026-04-02T17:03:42.075Z

Link: CVE-2026-35410

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-04-06T22:16:22.097

Modified: 2026-04-06T22:16:22.097

Link: CVE-2026-35410

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses