Mattermost is vulnerable to Improper Access Control. The vulnerability is due to a failure to perform proper access control, allowing a guest to retrieve metadata of a public playbook run linked to a ...
Continue Reading
May 28, 2024
The GraphQL controller lacked any CSRF protection, meaning authenticated users could be forced or tricked into visiting a URL that would send a GET request to the affected web server that could mutate ...
Continue Reading
May 28, 2024
The GraphQL controller lacked any CSRF protection, meaning authenticated users could be forced or tricked into visiting a URL that would send a GET request to the affected web server that could mutate ...
Continue Reading
May 28, 2024
Hi, Spring fans! Welcome to another installment of This Week in Spring! And what a week it will be! I'm in Venice, Italy, on a little vacation, but tomorrow I begin a quick journey to beautiful S ...
Continue Reading
May 27, 2024
Mattermost versions 9.5.x <= 9.5.3, 9.6.x <= 9.6.1 and 8.1.x <= 8.1.12 fail to perform proper access control which allows a guest to get the metadata of a public playbook run tha ...
Continue Reading
May 26, 2024
Mattermost versions 9.5.x <= 9.5.3, 9.6.x <= 9.6.1 and 8.1.x <= 8.1.12 fail to perform proper access control which allows a guest to get the metadata of a public playbook run tha ...
Continue Reading
May 26, 2024
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. ...
Continue Reading
May 21, 2024
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: Certain SAST CiConfiguration information could be viewed by unauthorized users in GitLab EE starting wit ...
Continue Reading
May 21, 2024
Back to Main
