OpenFGA is an authorization/permission engine. OpenFGA v1.5.7 and v1.5.8 are vulnerable to authorization bypass when calling Check API with a model that uses but not and from expressions and a userset ...
Continue Reading
August 09, 2024
OpenFGA is an authorization/permission engine. OpenFGA v1.5.7 and v1.5.8 are vulnerable to authorization bypass when calling Check API with a model that uses but not and from expressions and a userset ...
Continue Reading
August 09, 2024
VRCX is an assistant/companion application for VRChat. In versions prior to 2024.03.23, a CefSharp browser with over-permission and cross-site scripting via overlay notification can be combined to res ...
Continue Reading
August 09, 2024
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (a0f1159812781f3847a9da7e6b4455cd3f3ee8bd00da0eddbe589dd52d1d56e8) The OpenSSF Package Analysis project identified & ...
Continue Reading
August 09, 2024
A NULL pointer dereference flaw was found in the ub_ctx_set_fwd function in Unbound. This issue could allow an attacker who can invoke specific sequences of API calls to cause a segmentation fault. Wh ...
Continue Reading
August 09, 2024
OpenAI recently introduced a powerful feature called Structured Outputs, which ensures that AI-generated responses adhere strictly to a predefined JSON schema. This feature significantly improves the ...
Continue Reading
August 09, 2024
org.jenkins-ci.main, jenkins-core and org.jenkins-ci.main, remoting are vulnerable to Arbitrary File Read. The vulnerability is caused due to a missing validation on the file paths that are invoked on ...
Continue Reading
August 09, 2024
A NULL pointer dereference flaw was found in the ub_ctx_set_fwd function in Unbound. This issue could allow an attacker who can invoke specific sequences of API calls to cause a segmentation fault. Wh ...
Continue Reading
August 08, 2024
Back to Main
