43 matches found
PT-2025-52403
The Static Asset API in Mintlify Platform before 2025-11-15 allows remote attackers to inject arbitrary web script or HTML via the subdomain parameter because any tenant's assets can be served on any other tenant's documentation site...
PT-2025-52406
Name of the Vulnerable Software and Affected Versions Mintlify Platform versions prior to 2025-11-15 Description A directory traversal issue exists in the Static Asset Proxy Endpoint. This allows remote attackers to inject arbitrary web script or HTML through a specially crafted URL containing pa...
Mintlify Confirms Data Breach Through Compromised GitHub Tokens
By Deeba Ahmed Mintlify Scrambles After Security Breach, Revokes Tokens and Implements New Safeguards! This is a post from HackRead.com Read the original post: Mintlify Confirms Data Breach Through Compromised GitHub Tokens...