The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'subscriptionCouponId' parameter via the 'create_stripe_subscription' REST API endpoint in versions up ...
Continue Reading
August 17, 2024
The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'subscriptionCouponId' parameter via the 'create_stripe_subscription' REST API endpoint in versions up ...
Continue Reading
August 17, 2024
Security Advisory Description Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content ...
Continue Reading
August 17, 2024
New module content (3) Apache HugeGraph Gremlin RCE Authors: 6right and jheysel-r7 Type: Exploit Pull request: #19348 contributed by jheysel-r7 Path: linux/http/apache_hugegraph_gremlin_rce AttackerK ...
Continue Reading
August 16, 2024
Impact Due to ReferenceGrant changes not being immediately propagated in Cilium's GatewayAPI controller, Gateway resources are able to access secrets in other namespaces after the associated Refe ...
Continue Reading
August 16, 2024
As we move through 2024, the Wallarm Research Team continues to monitor the evolving API vulnerability and threat landscape. Our latest Q2 ThreatStats™ Report reveals critical trends and development ...
Continue Reading
August 16, 2024
Gateway API route matching order contradicts specification in...Read More ...
Continue Reading
August 16, 2024
A security issue was discovered in ingress-nginx where an actor with permission to create Ingress objects (in the networking.k8s.io or extensions API group) can bypass annotation validation to inject ...
Continue Reading
August 16, 2024
Back to Main
