### Impact This may impact users that use Shescape on Windows in a threaded context (e.g. using [Worker threads](https://nodejs.org/api/worker_threads.html)). The vulnerability can result in Shescape ...
Continue Reading
August 22, 2023
### Impact This bug affects Datasette instances running a Datasette 1.0 alpha - 1.0a0, 1.0a1, 1.0a2 or 1.0a3 - in an online accessible location but with authentication enabled using a plugin such as [ ...
Continue Reading
August 22, 2023
Unlike web browsers, mobile apps increasingly make it difficult or impossible to see what companies are really doing with your data. The answer? An inspectability API.Read More ...
Continue Reading
August 22, 2023
Apache NiFi 1.21.0 through 1.23.0 support JDBC and JNDI JMS access in several Processors and Controller Services with connection URL validation that does not provide sufficient protection against craf ...
Continue Reading
August 21, 2023
Improper Restriction of XML External Entity Reference, XML Injection (aka Blind XPath Injection) vulnerability in Apache Software Foundation Apache Ivy.This issue affects any version of Apache Ivy pri ...
Continue Reading
August 21, 2023
Improper Restriction of XML External Entity Reference, XML Injection (aka Blind XPath Injection) vulnerability in Apache Software Foundation Apache Ivy.This issue affects any version of Apache Ivy pri ...
Continue Reading
August 21, 2023
## Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-gjvc-55fw-v6vq. This link is maintained to preserve external references. ## Original Description Cross-Site Req ...
Continue Reading
August 21, 2023
The [**Wallarm API Discovery**]() module has been further enhanced to enable customers to identify Orphan APIs and bring them under management. In this post weâll discuss what Orphan APIs are, wh ...
Continue Reading
August 21, 2023
Back to Main
