CVE-2025-27098 - Static File Path Traversal Vulnerability in GraphQL Mesh – Details, Exploit, and How to Fix
GraphQL Mesh is a powerful gateway and federation framework that gives you the flexibility to connect not just GraphQL subgraphs, but also REST APIs, gRPC
CVE-2025-27097 - Variable Caching Flaw in GraphQL Mesh Federation Gateway Leads to Memory Leak and Token Replay
Published: June 2024
TL;DR
A security vulnerability in GraphQL Mesh (CVE-2025-27097) affects applications using GraphQL Mesh as a federation gateway. When using transforms at
CVE-2025-0352 - How a Broken API in Rapid Response Monitoring Can Expose Your Security Account
In early 2025, a severe vulnerability—now formally indexed as CVE-2025-0352—was discovered in the Rapid Response Monitoring “My Security Account” mobile application. This flaw
CVE-2025-24893 - XWiki 'SolrSearch' Remote Code Execution Vulnerability Exploited by Unauthenticated Users
Recently, a critical vulnerability—CVE-2025-24893—was discovered in the XWiki Platform, a powerful and widely-used open-source wiki engine. What makes this issue especially severe is
CVE-2024-55457 - MasterSAM Star Gate 11 Vulnerable to Directory Traversal via /adama/adama/downloadService (Exploit & Analysis)
In June 2024, a critical directory traversal vulnerability was discovered in MasterSAM Star Gate 11, a popular web-based access management solution. Tracked as CVE-2024-55457, this
Episode
00:00:00
00:00:00