Nearly 100,000 NPM Users’ Credentials Stolen in GitHub OAuth Breach
[ detailing an attack campaign utilizing stolen OAuth user tokens issued to two third-party GitHub.com integrators, Heroku and Travis CI. The npm organization on Git ...
Continue Reading
May 30, 2022
GitLab 14.7.x < 14.7.7 / 14.8.x < 14.8.5 / 14.9.x < 14.8.2 Default Password
A hardcoded password was set for accounts registered using an OmniAuth provider (e.g. OAuth, LDAP, SAML) in GitLab CE/EE versions 14.7 prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 a ...
Continue Reading
May 30, 2022
Zepp 6.1.4-play User Account Enumeration Vulnerability
Post ContentRead More ...
Continue Reading
May 30, 2022
Gitlab 14.9 – Authentication Bypass Vulnerability
Post ContentRead More ...
Continue Reading
May 30, 2022
Back to Main
