CVE-2024-6533 — Directus v10.13.0 allows an authenticated external attacker to execute arbitrary JavaScript on the client. This is possible because the application injects an attacker-controlled parameter that will b — CVE Database · The Intelligence Room