Skip to main content

COSMICBYTEZLABS

News Security HOWTOs Tools Study Training

Projects Newsletter Hire Me About

Press Enter to search or Esc to close

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.

COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1310+ Articles

157+ Guides

CONTENT

Latest News
Security Alerts
HOWTOs
Checklists
Projects
Exam Prep

RESOURCES

Search
Browse Tags
Newsletter Archive
Reading List
RSS Feed

COMPANY

About Us
Contact
Privacy Policy
Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational

5 articles

#API Security

All CosmicBytez Labs articles tagged #API Security, across news, security advisories, how-to guides, and projects.

SecurityApr 4, 2026
CVE-2026-25197: IDOR Flaw Lets Authenticated Users Access
A critical insecure direct object reference vulnerability allows authenticated users to pivot to any other user's profile by modifying an id parameter in...
SecurityApr 4, 2026
CVE-2026-28766: Gardyn Smart Garden API Exposes All User
A critical unauthenticated information disclosure vulnerability in the Gardyn smart garden platform exposes all registered user account information via a...
SecurityMar 30, 2026
CVE-2026-5128: Steam Trader 2.1.1 Unauthenticated Sensitive
A CVSS 10.0 critical vulnerability in steam-trader 2.1.1 exposes Steam account credentials, identity secrets, and shared secrets to unauthenticated remote...
SecurityMar 27, 2026
CVE-2026-33669: SiYuan Unauthenticated Document Content
A critical unauthenticated information disclosure vulnerability in SiYuan, the personal knowledge management system, allows remote attackers to retrieve...
SecurityMar 27, 2026
CVE-2026-33670: SiYuan readDir Path Traversal Notebook
A critical path traversal vulnerability in SiYuan's /api/file/readDir interface allows unauthenticated remote attackers to traverse notebook directories...