Bref Doesn’t Support Multiple Value Headers in ApiGatewayFormatV2

Impacted Resources bref/src/Event/Http/HttpResponse.php:61-90 Description When Bref is used in combination with an API Gateway with the v2 format, it does not handle multiple values headers. Precisely ...

Continue Reading

February 02, 2024

Bref vulnerable to Body Parsing Inconsistency in Event-Driven Functions

Impacted Resources bref/src/Event/Http/Psr7Bridge.php:130-168 Description When Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event i ...

Continue Reading

February 02, 2024

Fortra GoAnywhere MFT Unauthenticated Remote Code Execution

...Read More ...

Continue Reading

February 02, 2024

Wallarm’s Crusade Against Rising Credential Stuffing Threats

Credential Stuffing, a vital yet often overlooked aspect of cybersecurity, needs to be addressed with urgency. An alarmingly large segment of the population engages in the risky habit of using the sam ...

Continue Reading

February 02, 2024

CVE-2024-22107

An issue was discovered in GTB Central Console 15.17.1-30814.NG. The method systemSettingsDnsDataAction at /opt/webapp/src/AppBundle/Controller/React/SystemSettingsController.php is vulnerable to comm ...

Continue Reading

February 02, 2024

Grocy 4.0.2 Cross Site Request Forgery

...Read More ...

Continue Reading

February 02, 2024

CVE-2024-24557

A vulnerability was found in moby/moby. The classic builder cache system in moby is vulnerable to cache poisoning if the image is built using a 'FROM scratch' in Dockerfile. This flaw allows ...

Continue Reading

February 02, 2024

CVE-2023-47142

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 could allow an attacker on the organization's local network to escalate their privileges due to unauthorized API acces ...

Continue Reading

February 02, 2024

1 8,533 8,534 8,535 8,536 8,537 9,321

Back to Main
Subscribe for the latest news: