Category - API Security Blog

API security news

Main /

Tucows (VDP): Business Logic Error – Bypass of OTP Verification During Signup on hover.com

The Business Logic Error – Bypass of OTP Verification During Signup on hover.com was a vulnerability that allowed an attacker to register an account on www.hover.com using any email address without ...

Continue Reading

September 14, 2025

curl: libcurl: Host-Only Cookies Leak to Alternate IPv4 Forms

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

Node.js: Windows Device Names Still Allow Path Traversal in UNC Paths After CVE-2025-27210 Fix

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

curl: CVE-2025-10148: predictable WebSocket mask

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

curl: Confirmed Security Misconfigurations on curl.se (BREACH, Missing Security Headers, ETag Info Disclosure)

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

curl: curl ASSERTs when accessing an LDAP URL

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

curl: TOCTOU Race Condition in HTTP/2 Connection Reuse Leads to Certificate Validation Bypass

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

EUVD-2025-29108

A vulnerability was identified in Selleo Mentingo 2025.08.27. This issue affects some unknown processing of the file /api/course/enroll-course of the component Create New Course Basic Settings. Such m ...

Continue Reading

September 14, 2025

« Previous 1 … 271 272 273 274 275 … 385,998 Next »

Back to Main

Subscribe for the latest news: