Lucene search
+L

4 matches found

github
github
added 2026/04/04 6:10 a.m.10 views

Directus: GraphQL Schema SDL Disclosure Setting

Summary When GRAPHQLINTROSPECTION=false is configured, Directus correctly blocks standard GraphQL introspection queries schema, type. However, the serverspecsgraphql resolver on the /graphql/system endpoint returns an equivalent SDL representation of the schema and was not subject to the same...

5.3CVSS5.9AI score0.00314EPSS
Exploits0References3Affected Software1
osv
osv
added 2025/09/15 5:14 p.m.5 views

GHSA-MVH4-2CM2-6HPG Stored XSS in n8n LangChain Chat Trigger Node via initialMessages Parameter

Impact A stored Cross-Site Scripting XSS vulnerability was identified in the @n8n/n8n-nodes-langchain.chatTrigger node in n8n. If an authorized user configures the node with malicious JavaScript in the initialMessages field and enables public access, the script will be executed in the browser of...

4.1CVSS5.7AI score0.00222EPSS
Exploits0References6
redhatcve
redhatcve
added 2025/05/22 10:9 p.m.9 views

CVE-2022-39273

FlyteAdmin is the control plane for the data processing platform Flyte. Users who enable the default Flyte’s authorization server without changing the default clientid hashes will be exposed to the public internet. In an effort to make enabling authentication easier for Flyte administrators, the...

7.5CVSS7AI score0.0067EPSS
Exploits0References1
ncsc
ncsc
added 2021/08/25 12:0 a.m.5 views

Vulnerabilities fixed in VMware vRealize

VMware has fixed vulnerabilities in vRealize. A malicious person with access to the vRealize Operations Manager API could potentially exploit the vulnerabilities potentially exploit them to obtain sensitive data via accessing log files and arbitrary files, potentially possibly taking over a user...

7.5CVSS7AI score0.0116EPSS
Exploits1
Rows per page
Query Builder