| Title | birkir prime <=0.4.0 GraphQL Directive Information Disclosure |
|---|
| Description | This vulnerability allows the leakage of the instruction names, parameters and default values defined by the server through introspection queries or error messages. This will enable attackers to obtain security architectures such as authentication mechanisms, rate-limiting configurations, and sensitive field markings by crafting malicious error queries, providing precise attack references for them.
|
|---|
| Source | ⚠️ https://github.com/birkir/prime/issues/546 |
|---|
| User | ZAST.AI (UID 87884) |
|---|
| Submission | 01/03/2026 12:39 (5 months ago) |
|---|
| Moderation | 01/19/2026 08:15 (16 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 341769 [birkir prime up to 0.4.0.beta.0 GraphQL Directive /graphql information exposure] |
|---|
| Points | 19 |
|---|