2 matches found
Improper Access Control
aimeos/ai-admin-graphql is vulnerable to Improper Access Control. The vulnerability is due to inadequate enforcement of access control policies within aimeos/ai-admin-graphql, allowing editors are able to manage their own services via the GraphQL API, bypassing the intended restrictions designed...
Google Chrome CORS security bypass vulnerability
Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome due to inadequate enforcement of cross-domain resource sharing policies in the software. An attacker could use this vulnerability to bypass security restrictions...