JSON Web Token Vulnerability
A security flaw with risk severity of high has been found in the popular JsonWebToken open-source JavaScript package. The attacker could perform RCE on a server verifying a maliciously crafted…
SQL Injection Using JSON
Security researchers have developed a generic SQL injection technique that bypasses multiple web application firewalls (WAFs). Allowing potential attackers to easily hide their malicious payloads. Since the vendors are failing…
Critical Issues patched in Strapi – could lead to a data breach
Researchers uncovered two critical vulnerabilities in JSON that can expose data in the open-source Node.js headless content management system Strapi. Strapi is a popular open-source headless CMS software with built-in…