Summary A critical Remote Code Execution (RCE) vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the package exposes a local development HTTP server with an API e ...
Continue Reading
August 01, 2025
Reflected Cross-Site Scripting (XSS) in the id parameter of the live_edit.module_settings API endpoint in Microweber CMS2.0 allows execution of arbitrary...Read More ...
Continue Reading
August 01, 2025
Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as [+trusted certificate+|https://develope ...
Continue Reading
August 01, 2025
Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as [+trusted certificate+|https://develope ...
Continue Reading
August 01, 2025
Reflected Cross-Site Scripting (XSS) in the id parameter of the live edit.module settings API endpoint in Microweber CMS2.0 allows execution of arbitrary...Read More ...
Continue Reading
August 01, 2025
Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as [+trusted certificate+|https://develope ...
Continue Reading
August 01, 2025
Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as [+trusted certificate+|https://develope ...
Continue Reading
August 01, 2025
Reflected Cross-Site Scripting (XSS) in the id parameter of the live_edit.module_settings API endpoint in Microweber CMS2.0 allows execution of arbitrary...Read More ...
Continue Reading
August 01, 2025
Back to Main
