API - CVE CyberSecurity Database News (Page 51)

CVE-2023-0989: Information Disclosure Issue in GitLab CE/EE - Extracting Non-Protected CI/CD Variables Through Malicious Forks

Sep 29, 2023 API Exploit PHP GitLab

CVE-2023-0989: Information Disclosure Issue in GitLab CE/EE - Extracting Non-Protected CI/CD Variables Through Malicious Forks

A critical vulnerability, identified as CVE-2023-0989, has been discovered in GitLab Community Edition (CE) and Enterprise Edition (EE). This information disclosure issue affects all GitLab

CVE-2023-3115: GitLab EE Single Sign On Vulnerability Affecting Public Members-Only Project Repositories Access Control

Sep 29, 2023 API Exploit OAuth Google GitLab

CVE-2023-3115: GitLab EE Single Sign On Vulnerability Affecting Public Members-Only Project Repositories Access Control

A recently discovered security vulnerability in GitLab EE, known as CVE-2023-3115, has been found to affect multiple versions of the popular web-based Git repository manager.

Sep 28, 2023 API Exploit GraphQL Drupal Core

CVE-2023-5256: Drupal JSON:API Module Error Backtrace Leakage Vulnerability

In this long read post, we will delve deep into a recent vulnerability found in Drupal's JSON:API module. This vulnerability, dubbed CVE-2023-5256,

Sep 27, 2023 API jumpserver

CVE-2023-43652 - JumpServer Public Key Authentication Vulnerability Presents Security Risk

In this long-read post, we will discuss a critical security vulnerability present in JumpServer until recently, an open-source bastion host. The vulnerability, identified as CVE-2023-43652,

Sep 27, 2023 API Exploit Cisco Cisco Digital Network Architecture Center (DNA Center)

CVE-2023-20223 Exploiting A Vulnerability In Cisco DNA Center

In this post, we will dive deep into the details of a dangerous vulnerability that has been recently uncovered in Cisco DNA Center, listed as