### Impact Tags from pages not viewable to the current user are leaked by the tags API. This information can also be exploited to infer the document reference of non-viewable pages. ### Patches This v ...
Continue Reading
June 23, 2023
### Impact Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). For instance, the following URL execute an `alter` on the browser: `/xwiki/bin/view/Main/?view ...
Continue Reading
June 23, 2023
### Impact If you used the [apiPrefilter](https://remult.dev/docs/ref_entity.html#apiprefilter) option of the `@Entity` decorator, by setting it to a function that returns a filter that prevents unaut ...
Continue Reading
June 23, 2023
### Impact If you used the [apiPrefilter](https://remult.dev/docs/ref_entity.html#apiprefilter) option of the `@Entity` decorator, by setting it to a function that returns a filter that prevents unaut ...
Continue Reading
June 23, 2023
[]() VMware has flagged that a recently patched critical c ...
Continue Reading
June 23, 2023
We review the final changes in the 2023 update to the OWASP Top 10 API Security Risks to help you on your journey to secure your APIs.Read More ...
Continue Reading
June 23, 2023
## Understanding CAASM  _This article was written by Ethan Smart, Co-Founder and ...
Continue Reading
June 23, 2023
[]() More details have emerged about the spy ...
Continue Reading
June 23, 2023
Back to Main
