CVE-2023-26144 - graphql Denial of Service Vulnerability in Versions 16.3. to 16.8.1
A denial of service (DoS) vulnerability has been discovered in versions 16.3. to 16.8.1 of the popular JavaScript library graphql. This vulnerability
CVE-2023-41317 - Apollo Router Denial-of-Service Vulnerability in GraphQL Subscriptions
Attention Apollo Router users! A vulnerability has been found in certain versions of Apollo Router dealing with GraphQL subscriptions, which could lead to denial-of-service attacks.
CVE-2023-40027 - Keystone Headless CMS Unrestricted adminMeta GraphQL Query Access Vulnerability
Introduction: Keystone is a popular open source headless CMS for Node.js, which leverages the power of GraphQL and React. Recently, a security vulnerability (CVE-2023-40027)
CVE-2023-38503 - Unauthorized Access to Directus User Data through GraphQL Subscriptions
Directus is a popular real-time API and App dashboard that is commonly used for managing SQL database content. However, a recent vulnerability has been discovered
CVE-2023-34235: Strapi Private Fields Leak through Prefix Change in Knex Query
In Strapi, an open-source headless content management system (CMS), versions prior to 4.10.8 can suffer from private fields leak when using the t(
Episode
00:00:00
00:00:00