Most of the time, vulnerabilities are things that grant attackers superpowers: the ability to read or write arbitrary files to the server... continue reading
Election security is currently top of mind for the American public, as we struggle to find technology that enables everyone to cast a vote without... continue reading
Far too many breaches occur due to the all-too-effective practice of social engineering. Just look at the latest SANS breach, an organization that... continue reading
In this article, we are going to discuss a variety of security risks to GraphQL deployments and migrations that we’ve seen during our client... continue reading
Whether you are migrating an on-premise deployment to a cloud provider tasked with deploying a new cloud-hosted application, or looking to improve... continue reading
The revival of HTTP request smuggling has led to devastating vulnerabilities in our modern application deployments. An HTTP request smuggled past... continue reading
ADVISORY SUMMARY A server-side request forgery (SSRF) vulnerability was found in the Zamzar API when converting an Open Office ODT file to a PDF.... continue reading
Aug 12, 2020 5:00:00 AM |
By Chris Davis, George Steketee
ADVISORY SUMMARY The following document describes an identified vulnerability in the TinyMCE application in version 5.2.1. TinyMCE is in use on... continue reading
ADVISORY SUMMARY The following document describes identified vulnerabilities in the LibreHealth application version 2.0.0. Five high-risk issues... continue reading
DARK Reading
HELPNET Security
Forbes