Remote code execution when loading a crafted GraphQL schema · Advisory - GitHub

Remote code execution when loading a crafted GraphQL schema · Advisory – GitHub

March 12, 2025

Summary. Loading a malicious schema definition in GraphQL::Schema.from_introspection (or GraphQL::Schema::Loader.load ) can result in remote code …