This Week in Spring – March 21st, 2023

Hi, Spring fans! Welcome to another rip roaring installment of _This Week in Spring_! It's March 21st and today they announced Java 20! It's an exciting time to be a Java developer. Java 20, of course ...

Continue Reading
CVE-2023-28104

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

Continue Reading
DDOS attack on graphql endpoints

An attacker could use a specially crafted graphql query to execute a Distributed Denial of Service attack (DDOS attack) against a website. This mostly affects websites with publicly exposed and partic ...

Continue Reading
DDOS attack on graphql endpoints

An attacker could use a specially crafted graphql query to execute a Distributed Denial of Service attack (DDOS attack) against a website. This mostly affects websites with publicly exposed and partic ...

Continue Reading
CVE-2023-27588

Hasura is an open-source product that provides users GraphQL or REST APIs. A path traversal vulnerability has been discovered within Hasura GraphQL Engine prior to versions 1.3.4, 2.55.1, 2.20.1, and ...

Continue Reading
Company admin role gives excessive privileges in eZ Platform Ibexa

Users with the Company admin role (introduced by the company account feature in v4) can assign any role to any user. This also applies to any other user that has the role / assign policy. Any subtree ...

Continue Reading
Company admin role gives excessive privileges in eZ Platform Ibexa

Users with the Company admin role (introduced by the company account feature in v4) can assign any role to any user. This also applies to any other user that has the role / assign policy. Any subtree ...

Continue Reading
Shopify Cross Site Scripting Vulnerability

Post ContentRead More ...

Continue Reading

Back to Main

Subscribe for the latest news: