API - API Security Blog

CVE-2022-45930

A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm-store-h2/src/main/java/org/opendaylight/aaa/datastore/h2/DomainStore.java deleteDomain function is affected ...

November 29, 2022

CVE-2022-45931

A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm-store-h2/src/main/java/org/opendaylight/aaa/datastore/h2/UserStore.java deleteUser function is affected whe ...

November 29, 2022

CVE-2022-45932

A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm-store-h2/src/main/java/org/opendaylight/aaa/datastore/h2/RoleStore.java deleteRole function is affected whe ...

November 29, 2022

kubernetes security update

kubernetes [1.22.16-1] - Added Oracle specific build files for Kubernetes - Add preBuildOL8Commands to Jenkinsfile kubernetes [1.23.14-1] - Added Oracle specific build files for Kubernetes kubernetes ...

November 29, 2022

vBulletin 5.5.2 PHP Object Injection Exploit

vBulletin versions 5.5.2 and below suffers from an issue where user input passed through the "messageids" request parameter to /ajax/api/vb4_private/movepm is not properly sanitized before being used ...

November 29, 2022

Exploit for Vulnerability in Microsoft

# CVE-2022-34721-RCE-POC æµè¡ä½ (BLEED YOU) A critical RCE vulnerabi...Read More ...

November 29, 2022

CVSS3 - CRITICAL

SUSE SLES15 Security Update : tomcat (SUSE-SU-2022:4257-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4257-1 advisory. - The simplified implementation of blocking ...

November 29, 2022

Expanding API Security Awareness at API World

API security should be a primary concern for organizations. Learn about the three principles of APIs to help protect against attacks.Read More ...

November 29, 2022