Cari Təhlükəsizlik Zəiflikləri

Requests to cache an image could be abused to include…

Requests to cache an image and return its metadata could…

Functions with insufficient randomness were used to generate authorization tokens…

The “OX Count” web service did not specify a media-type…

The “OX Chat” web service did not specify a media-type…

Custom log-in and log-out locations are used-defined as jslob but…

The “upsell” widget for the portal allows to specify a…

The users clientID at “application passwords” was not sanitized or…

Frontend themes are defined by user-controllable jslob settings and could…

Full-text autocomplete search allows user-provided SQL syntax to be injected…

In case Cacheservice was configured to use a sproxyd object-storage…

Cacheservice did not correctly check if relative cache object were…