Hi, Spring fans! Welcome to another installment of _This Week in Spring_! This week's all sorts of weird for me. It's _Tuesday_! But here in the US we just celebrated the 4th of July, and I, like many ...
Continue Reading
July 05, 2022
Hi, Spring fans! Welcome to another installment of _This Week in Spring_! I'm writing this from the Big Apple, New York City! I'm here for the SpringOne Tour 2022 NYC event. This is my first time back ...
Continue Reading
June 28, 2022
Release of ACS 3.70.1 Security Fix(es): * stackrox: Improper sanitization allows users to retrieve Notifier secrets from GraphQL API in plaintext (CVE-2022-1902) For more details about the security is ...
Continue Reading
June 27, 2022
Release of RHACS 3.69.2 Security Fix(es): * stackrox: Improper sanitization allows users to retrieve Notifier secrets from GraphQL API in plaintext (CVE-2022-1902)Read More ...
Continue Reading
June 24, 2022
Hi, Spring fans! In thi^^^ these installments, we continue our series introducing the Spring for GraphQL project. This series features Spring for GraphQL lead [Rossen Stoyanchev (@rstoya05)]() - whose ...
Continue Reading
June 24, 2022
IRRd did not always filter password hashes in query responses relating to `mntner` objects and database exports. This may have allowed adversaries to retrieve some of these hashes, perform a brute-for ...
Continue Reading
June 23, 2022
An issue has been discovered in GitLab CE/EE affecting versions 13.0 to 14.6.5, 14.7 to 14.7.4, and 14.8 to 14.8.2. Private GitLab instances with restricted sign-ups may be vulnerable to user enumerat ...
Continue Reading
June 23, 2022
## Summary: The vulnerability I have found is classified as a Regular Expression Denial of Service. While inspecting the source code file [RealtimeGQLSubscriptionAsync.js](https://www.redditstatic.com ...
Continue Reading
June 23, 2022
Back to Main
