CVE-2022-43693 - Concrete CMS CSRF Vulnerability in OAuth External Authentication Service
The CVE-2022-43693 vulnerability in Concrete CMS (a popular open-source content management system) exposes its users to a Cross-Site Request Forgery (CSRF) attack. This vulnerability stems
CVE-2022-3632 – Explained: The OAuth Client by DigitalPixies WordPress Plugin CSRF Vulnerability
It's time for a deep dive into the world of cybersecurity, focusing on a potentially critical vulnerability in a popular WordPress plugin. CVE-2022-3632
CVE-2022-45130 CSRF attack possible via the /api/v2/cli/commands REST API.
If you have installed Obsidian on your server, it is critical that you review the list of REST API endpoints, as there is a risk
CVE-2022-31690: Spring Security Privilege Escalation Vulnerability in OAuth2 Access Token Response
This long-read blog post aims to shed light on a recent vulnerability, identified by the Common Vulnerabilities and Exposures ID CVE-2022-31690, in the Spring Security
CVE-2022-42466 An end user could set the value of an editable string property of a domain object to a value that would be rendered unchanged when the value is saved.
This issue only occurred when the domain object was created via the API. When creating an instance via the REST API or the query builder,
Episode
00:00:00
00:00:00