An issue has been discovered in GitLab CE/EE affecting all versions from 10.7 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated attackers to create a DoS ...
Continue Reading
July 21, 2025
The package communicates with a domain associated with malicious activity. -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (b7c583ae9a5f16200bfe90e125da19776e40148 ...
Continue Reading
July 21, 2025
The package communicates with a domain associated with malicious activity. -= Per source details. Do not edit below this line.=- Source: ghsa-malware (b805bd73c447ee03b3330e1a1ce27c4b8edef17d58376cd0 ...
Continue Reading
July 21, 2025
Impact The Parse Server GraphQL API previously allowed public access to the GraphQL schema without requiring a session token or the master key. While schema introspection reveals only metadata and not ...
Continue Reading
July 21, 2025
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Starting in 5.3.0 and before 7.5.3 and 8.2.2, the Parse Server GraphQL API previously allowed pu ...
Continue Reading
July 21, 2025
OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.6.6, an IDOR vulnerability in the GrapQL NotificationLineNotificationMarkReadMut ...
Continue Reading
July 18, 2025
OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.6.6, an IDOR vulnerability in the GrapQL NotificationLineNotificationMarkReadMut ...
Continue Reading
July 18, 2025
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Starting in 5.3.0 and before 7.5.3 and 8.2.2, the Parse Server GraphQL API previously allowed pu ...
Continue Reading
July 17, 2025
Back to Main
