With threat indicators - API Security Blog

Hardcoded JWT Secret in AgileConfig Read More ...

August 31, 2022

CVSS3 - CRITICAL

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): * php: uninitialized array in pg_query_params() leading to RCE (CVE-2022-31625) For more details ...

August 31, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): * php: uninitialized array in pg_query_params() leading to RCE (CVE-2022-31625) For more details ...

August 31, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Use of Hard-coded Credentials in AgileConfig.Client

Hardcoded JWT Secret in AgileConfig Read More ...

August 30, 2022

CVSS3 - CRITICAL

Path Traversal in Gravitee API Management

HTML injection combined with path traversal in the Email service in Gravitee API Management before 1.25.3 allows anonymous users to read arbitrary files via a /management/users/register request.Read M ...

August 30, 2022

CVSS3 - MEDIUM

Use of Hard-coded Credentials in AgileConfig.Client

Hardcoded JWT Secret in AgileConfig Read More ...

August 30, 2022

CVSS3 - CRITICAL

Security Bulletin:IBM TRIRIGA Application Platform discloses CVE-2021-22696

## Summary IBM TRIRIGA Application Platform discloses CVE-2021-22696 ## Vulnerability Details ** CVEID: **[CVE-2021-22696]() ** DESCRIPTION: **Apache CXF is vulnerable to a denial of service, caused b ...

August 30, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Security Bulletin: IBM Rational Build Forge is affected by Apache Tomcat version used in it. (CVE-2021-42340)

## Summary IBM Rational Build Forge is affected by CVE-2021-42340. ## Vulnerability Details ** CVEID: **[CVE-2021-42340]() ** DESCRIPTION: **Apache Tomcat is vulnerable to a denial of service, caused ...

August 30, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM