Vulnerabilities > Hasura > Graphql Engine > 1.0.0

DATE CVE VULNERABILITY TITLE RISK
2023-03-14 CVE-2023-27588 Path Traversal vulnerability in Hasura Graphql Engine
Hasura is an open-source product that provides users GraphQL or REST APIs.
network
low complexity
hasura CWE-22
7.5
7.5
2019-07-29 CVE-2019-1020015 Unspecified vulnerability in Hasura Graphql Engine 1.0.0
graphql-engine (aka Hasura GraphQL Engine) before 1.0.0-beta.3 mishandles the audience check while verifying JWT.
network
low complexity
hasura
7.5
7.5