graphql

Dgraph’s Debug Endpoint Hands Over Admin Tokens to Anyone

• Vulnerability Report

Dgraph’s Debug Endpoint Hands Over Admin Tokens to Anyone

Do Son April 19, 2026 0

Dgraph, the horizontally scalable and distributed GraphQL database known for its ACID transactions and graph-backend performance, is...

Read More Read more about Dgraph’s Debug Endpoint Hands Over Admin Tokens to Anyone

Security Alert: GitLab Issues Patch for High-Severity Vulnerabilities Across CE and EE

• Vulnerability Report

Security Alert: GitLab Issues Patch for High-Severity Vulnerabilities Across CE and EE

Do Son April 9, 2026 0

GitLab has released critical security updates for Community Edition (CE) and Enterprise Edition (EE). Versions 18.10.3, 18.9.5,...

Read More Read more about Security Alert: GitLab Issues Patch for High-Severity Vulnerabilities Across CE and EE

Zero Authentication, Total Control: Critical CVSS 10 Flaw Uncovered in Dgraph Database

• Vulnerability Report

Zero Authentication, Total Control: Critical CVSS 10 Flaw Uncovered in Dgraph Database

Do Son April 5, 2026 2

A security vulnerability was found in Dgraph, the high-performance, horizontally scalable GraphQL database. The flaw, designated as...

Read More Read more about Zero Authentication, Total Control: Critical CVSS 10 Flaw Uncovered in Dgraph Database

GitLab Critical Alert: High-Severity Flaws Allow App Impersonation and AI Token Leaks

• Vulnerability Report

GitLab Critical Alert: High-Severity Flaws Allow App Impersonation and AI Token Leaks

Do Son March 25, 2026 0

GitLab has released a critical security advisory alongside versions 18.10.1, 18.9.3, and 18.8.7 for its Community (CE)...

Read More Read more about GitLab Critical Alert: High-Severity Flaws Allow App Impersonation and AI Token Leaks

CVE-2026-25993: Critical EverShop SQL Injection (CVSS 9.3) Exposes Stores

• Vulnerability Report

CVE-2026-25993: Critical EverShop SQL Injection (CVSS 9.3) Exposes Stores

Do Son February 12, 2026 0

A critical vulnerability has been discovered in EverShop, a modern, developer-focused e-commerce platform built on React and...

Read More Read more about CVE-2026-25993: Critical EverShop SQL Injection (CVSS 9.3) Exposes Stores

GitLab Patch Alert: High-Severity Web IDE Flaw Exposes Private Repos

• Vulnerability Report

GitLab Patch Alert: High-Severity Web IDE Flaw Exposes Private Repos

Do Son February 11, 2026 0

GitLab has released a sweeping security update for its Community (CE) and Enterprise (EE) editions, patching a...

Read More Read more about GitLab Patch Alert: High-Severity Web IDE Flaw Exposes Private Repos

SuiteCRM SQL Injection Flaws (CVE-2025-64492, CVE-2025-64493) Expose Customer Data

• Vulnerability Report

SuiteCRM SQL Injection Flaws (CVE-2025-64492, CVE-2025-64493) Expose Customer Data

Do Son November 11, 2025 0

The maintainers of SuiteCRM, the popular open-source customer relationship management (CRM) platform, have released an urgent security...

Read More Read more about SuiteCRM SQL Injection Flaws (CVE-2025-64492, CVE-2025-64493) Expose Customer Data

GitLab Patches Two High-Severity Flaws in GraphQL API Affecting Both CE and EE Editions

• Vulnerability Report

GitLab Patches Two High-Severity Flaws in GraphQL API Affecting Both CE and EE Editions

Do Son October 9, 2025 0

GitLab has released important updates addressing two high-severity vulnerabilities that impact both its Community Edition (CE) and...

Read More Read more about GitLab Patches Two High-Severity Flaws in GraphQL API Affecting Both CE and EE Editions

CVE-2025-27407 (CVSS 9.1): Critical GraphQL-Ruby Flaw Exposes Millions to RCE

• Vulnerability

CVE-2025-27407 (CVSS 9.1): Critical GraphQL-Ruby Flaw Exposes Millions to RCE

Do Son March 16, 2025 0

A severe vulnerability, tracked as CVE-2025-27407, has been discovered in the popular graphql-ruby gem, putting millions of applications...

Read More Read more about CVE-2025-27407 (CVSS 9.1): Critical GraphQL-Ruby Flaw Exposes Millions to RCE