MAL-2025-11756 Malicious code in @zalastax/nolb-graphql-h (npm)

The package @zalastax/nolb-graphql-h was found to contain malicious code...

MAL-2025-11766 Malicious code in @zalastax/nolb-graphql-r (npm)

The package @zalastax/nolb-graphql-r was found to contain malicious code...

MAL-2025-34547 Malicious code in taphonomy-graphql-nodejs-isostasy (npm)

The package taphonomy-graphql-nodejs-isostasy was found to contain malicious code...

MAL-2025-21884 Malicious code in graphql-callback-loglevel-standard (npm)

The package graphql-callback-loglevel-standard was found to contain malicious code...

MAL-2025-26130 Malicious code in mechatronics-graphql-lepton-cryptography (npm)

The package mechatronics-graphql-lepton-cryptography was found to contain malicious code...

MAL-2025-11748 Malicious code in @zalastax/nolb-graphql-2 (npm)

The package @zalastax/nolb-graphql-2 was found to contain malicious code...

MAL-2025-21796 Malicious code in gql-generated (npm)

The package gql-generated was found to contain malicious code...

Malicious code in @zalastax/nolb-graphql-p (npm)

The package @zalastax/nolb-graphql-p was found to contain malicious code...

MAL-2025-22852 Malicious code in hyperion-baryon-fork-graphql (npm)

The package hyperion-baryon-fork-graphql was found to contain malicious code...

MAL-2025-11746 Malicious code in @zalastax/nolb-graphql (npm)

The package @zalastax/nolb-graphql was found to contain malicious code...

MAL-2025-11761 Malicious code in @zalastax/nolb-graphql-m (npm)

The package @zalastax/nolb-graphql-m was found to contain malicious code...

MAL-2025-26424 Malicious code in mini-css-extract-plugin-jabbah-sagitta-graphql (npm)

The package mini-css-extract-plugin-jabbah-sagitta-graphql was found to contain malicious code...

Enhancing GraphQL Security by Detecting Malicious Queries Using Large Language Models, Sentence Transformers, and Convolutional Neural Networks

GraphQL's flexibility, while beneficial for efficient data fetching, introduces unique security vulnerabilities that traditional API security mechanisms often fail to address. Malicious GraphQL queries can exploit the language's dynamic nature, leading to denial-of-service attacks, data...

ai.ancf.lmos-router:benchmarks (>=0.2.0 <=0.28.0), ai.ancf.lmos-router:lmos-router-hybrid (>=0.2.0 <=0.28.0) +17933 more potentially affected by CVE-2025-55163 via io.netty:netty-codec-http2 (>=4.1.0.Beta4 <=4.1.123.Final)

io.netty:netty-codec-http2 MAVEN version =4.1.0.Beta4, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.1.1, =0.1.1, =0.1.1, =0.0.4, =0.6.0 - ai.ancf.lmos:lmos-router-hybrid =0.1.0 - ai.ancf.lmos:lmos-router-hybrid-spring-boot-starter =0.1.0 - ai.ancf.lmos:lmos-router-llm =0.1.0 -...

Security Bulletin: security vulnerabilities are addressed with IBM Business Automation Insights iFixes for July 2025.

Summary Security vulnerabilities are addressed with IBM Business Automation Insights 24.0.1-IF004 and 24.0.0-IF006 Vulnerability Details CVEID:CVE-2025-27789 DESCRIPTION: Babel is a compiler for writing next generation JavaScript. When using versions of Babel prior to 7.26.10 and 8.0.0-alpha.17 t...

[SECURITY] [DLA 4263-1] ruby-graphql security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4263-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta August 04, 2025 https://wiki.debian.org/LTS -...

DLA-4263-1 ruby-graphql - security update

Bulletin has no description...

Debian dla-4263 : ruby-graphql - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4263 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-4263-1 [email protected] https://www.debian.org/lts/security/...

Debian: Security Advisory (DLA-4263-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-54536

In JetBrains TeamCity before 2025.07 a CSRF was possible on GraphQL endpoint...