CVE-2024-43414 : APOLLOGRAPHQL FEDERATION UP TO 1.52.0/2.8.4 RECURSION
Description Apollo Federation is an architecture for declaratively composing APIs into a unified graph. Each team can own their slice of the graph independently, empowering…
CVE-2024-43117 : WPMU DEV HUMMINGBIRD PLUGIN UP TO 3.9.1 ON WORDPRESS CROSS-SITE REQUEST FORGERY
Description Cross-Site Request Forgery (CSRF) vulnerability in WPMU DEV Hummingbird.This issue affects Hummingbird: from n/a through 3.9.1. References https://patchstack.com/database/vulnerability/hummingbird-performance/wordpress-hummingbird-plugin-3-9-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve For More Information CVERecord
CVE-2024-7125 : HITACHI OPS CENTER COMMON SERVICES 10.9.3-00/11.0.2-00 AUTHENTICATION BYPASS
Description Authentication Bypass vulnerability in Hitachi Ops Center Common Services.This issue affects Hitachi Ops Center Common Services: from 10.9.3-00 before 11.0.2-01. References https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-143/index.html For More…
CVE-2024-8088 : PYTHON CPYTHON UP TO 3.13.0 ZIPFILE MODULE NAMELIST/ITERDIR/EXTRACTALL INFINITE LOOP
Description There is a HIGH severity vulnerability affecting the CPython "zipfile" module. When iterating over names of entries in a zip archive (for example, methods…
CVE-2024-42490 : GOAUTHENTIK API ENDPOINT IMPROPER AUTHORIZATION
Description authentik is an open-source Identity Provider. Several API endpoints can be accessed by users without correct authentication/authorization. The main API endpoints affected by this…
CVE-2024-8041 : GITLAB COMMUNITY EDITION/ENTERPRISE EDITION UP TO 17.1.5/17.2.3/17.3.0 IMPORT RESOURCE CONSUMPTION
Description A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior to 17.1.6, 17.2 prior to 17.2.4, and 17.3…