creation_timestamp| type| source ---|---|--- 2025-09-10 21:14:50+00:00| seen|...Read More ...
Continue Reading
September 10, 2025
creation_timestamp| type| source ---|---|--- 2025-09-10 20:54:49+00:00| seen|...Read More ...
Continue Reading
September 10, 2025
creation_timestamp| type| source ---|---|--- 2025-09-10 20:49:49+00:00| seen|...Read More ...
Continue Reading
September 10, 2025
creation_timestamp| type| source ---|---|--- 2025-09-10 20:15:05+00:00| seen| https://bsky.app/profile/knaepp.bsky.social/post/3lyj2dsk7fz2s 2025-09-10 21:10:05+00:00| seen|...Read More ...
Continue Reading
September 10, 2025
Hoverfly is an open source API simulation tool. In versions 1.11.3 and prior, Hoverfly’s admin WebSocket endpoint /api/v2/ws/logs is not protected by the same authentication middleware that guards t ...
Continue Reading
September 10, 2025
Impact A bug in the authentication logic will cause API tokens that were deleted and/or expired to be considered valid. This means that any API token that is associated with an active user account can ...
Continue Reading
September 10, 2025
Summary Hoverfly’s admin WebSocket endpoint /api/v2/ws/logs is not protected by the same authentication middleware that guards the REST admin API. Consequently, an unauthenticated remote attacker ca ...
Continue Reading
September 10, 2025
Impact A legacy API to retrieve user details could be misused to retrieve profile details of other users without having admin permissions due to a broken access check. Patches You should to update to ...
Continue Reading
September 10, 2025
Back to Main
