📦 Graphql Engine

CVE-2021-47748 is a critical remote code execution vulnerability in Hasura GraphQL Engine that allows attackers to execute arbitrary shell commands on the server. Attackers can exploit this by craftin...

CVE-2021-47713 is a denial of service vulnerability in Hasura GraphQL Engine where attackers can craft malicious GraphQL queries with excessive nested fields to overwhelm server resources. This affect...

CVE-2021-47715 is a server-side request forgery vulnerability in Hasura GraphQL Engine that allows attackers to inject malicious remote schema URLs through the add_remote_schema endpoint. This enables...

CVE-2021-47714 is a local file read vulnerability in Hasura GraphQL Engine 1.3.3, allowing attackers to exploit SQL injection via the query endpoint to access arbitrary system files using PostgreSQL's...