Category - API Security Blog

API security news

Main /

Tucows (VDP): Business Logic Error – Bypass of OTP Verification During Signup on hover.com

The Business Logic Error – Bypass of OTP Verification During Signup on hover.com was a vulnerability that allowed an attacker to register an account on www.hover.com using any email address without ...

Continue Reading

September 14, 2025

curl: CVE-2025-10148: predictable WebSocket mask

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

Node.js: Windows Device Names Still Allow Path Traversal in UNC Paths After CVE-2025-27210 Fix

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

curl: Confirmed Security Misconfigurations on curl.se (BREACH, Missing Security Headers, ETag Info Disclosure)

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

curl: curl ASSERTs when accessing an LDAP URL

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

curl: TOCTOU Race Condition in HTTP/2 Connection Reuse Leads to Certificate Validation Bypass

Vulnerability description not...Read More ...

Continue Reading

September 14, 2025

PT-2025-37390

Name of the Vulnerable Software and Affected Versions: eCharge Hardy Barth Salia PLCC version 2.2.0 Description: A security flaw exists in eCharge Hardy Barth Salia PLCC 2.2.0 related to unrestricted ...

Continue Reading

September 14, 2025

PT-2025-37366

Name of the Vulnerable Software and Affected Versions: Wavlink WL-WN578W2 version 221110 Description: A security issue has been identified in Wavlink WL-WN578W2. Manipulation of the delete list argume ...

Continue Reading

September 14, 2025

« Previous 1 … 510 511 512 513 514 … 385,998 Next »

Back to Main

Subscribe for the latest news: