Apache Fineract Vulnerabilities
Apache Fineract is a powerful platform poised to make a significant impact in the world of digital financial services. Apache Fineract is not immune to security vulnerabilities. Recently, three vulnerabilities have…
Atlassian Jira Align Vulnerabilities
Researchers have discovered vulnerabilities in Atlassian Jira Align, a SaaS platform could allow users with access to the service to become application administrators, and then attack the Atlassian service. The…
WordPress Pingback Vulnerability could lead to DDoS
Researchers have publicised a six-year-old blind SSRF vulnerability in a WordPress Pingback Core feature that could enable DDoS attacks. Pingback which is enabled by default, requests allow WordPress authors to…
DeSync Attack – Browser powered HTTP Request Smuggling
A new class of HTTP request smuggling attack made a researcher to compromise multiple popular websites including Amazon and Akamai, break TLS, and exploit Apache servers. The research that opens…
Vulnerabilities in Device42 platform
Researchers detailed numerous severe security issues on the Device42 platform that opens the door to attackers. Device42 provides device discovery, asset management, and dependency mapping for data centers and the…
Open-Xchange fixes for RCE
Open-Xchange, a popular infrastructure provider has released fixes for several security vulnerabilities impacting OX App Suite. A secure email and collaboration software designed for telcos, web hosting firms, and service…
Atlassian Jira SSRF Vulnerability
Researchers have discovered a SSRF flaw in Atlassian’s Jira an issue tracking and project management software by abusing without obtaining credentials (Jira Service Desk’s Signups function). Tracked as CVE-2022-26135, the…
Java RMI vulnerable to SSRF
Java RMI services can be attacked through SSRF attacks, its an object-oriented Remote Procedure Call mechanism available in most Java installations. Software developers can use the technology to make functions available…