Matrix Rust SDK vulnerable to SQL Injection through its EventCache implementation

An SQL injection vulnerability in the EventCache::find_event_with_relations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that di ...

Continue Reading
Parse Server exposes the data schema via GraphQL API

Impact The Parse Server GraphQL API previously allowed public access to the GraphQL schema without requiring a session token or the master key. While schema introspection reveals only metadata and not ...

Continue Reading
CVE-2025-53549 Matrix Rust SDK allows SQL injection in the EventCache implementation

The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::find_event_with_relations method of matrix-sdk 0 ...

Continue Reading
CVE-2025-49812

creation_timestamp| type| source ---|---|--- 2025-07-10 17:02:07+00:00| seen|...Read More ...

Continue Reading
CVE-2025-53020

creation_timestamp| type| source ---|---|--- 2025-07-10 17:02:07+00:00| seen|...Read More ...

Continue Reading
CVE-2025-49630

creation_timestamp| type| source ---|---|--- 2025-07-10 17:02:07+00:00| seen|...Read More ...

Continue Reading
CVE-2025-47811

creation_timestamp| type| source ---|---|--- 2025-07-10 16:53:40+00:00| seen|...Read More ...

Continue Reading
GHSA-GVFX-P3H5-QF65

creation_timestamp| type| source ---|---|--- 2025-07-10 17:35:09+00:00| seen|...Read More ...

Continue Reading

Back to Main

Subscribe for the latest news: