Gitlab reports: Malicious Runner Attachment via GraphQLRead More ...
Continue Reading
May 06, 2023
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.9.7, ...
Continue Reading
May 05, 2023
Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized too ...
Continue Reading
May 03, 2023
**Summary:** Hi Team, I think I can delete any Campaigns based on campaign_id ### Steps To Reproduce Follow the POST request below ```` POST /graphql HTTP/2 Host: hackerone.com Cookie: yourcookie Use ...
Continue Reading
May 03, 2023
Over the past few months, weâve made a number of[ improvements]() that make Dependabot smarter, quieter, and easier to work with, from [pausing pull requests on inactive repositories]() to making ...
Continue Reading
May 02, 2023
Stud42's API is vulnerable to a denial of service because the API pod can be overloaded by the GraphQL parser.Read More ...
Continue Reading
May 01, 2023
graphql-java is vulnerable to Denial Of Services (DoS). An attacker can send a maliciously crafted GraphQL query that causes excessive stack consumption, which can lead to an application crash.Read Mo ...
Continue Reading
May 01, 2023
The VTEX apps-graphql@2.x GraphQL API module does not properly restrict unauthorized access to private configuration data. (apps-graphql@3.x is unaffected by this issue.)Read More ...
Continue Reading
May 01, 2023
Back to Main
