January 23, 2023
CVE-2022-36804: Pre-Auth RCE in Atlassian Bitbucket Server
CVE-2022-36804: A critical command injection vulnerability was found in multiple API endpoints of the Atlassian Bitbucket Server and Data center.
October 29, 2021
Identifying and Exploiting Path Traversal or Remote Code Execution in Apache 2.4.49 and 2.4.50
Path Traversal or Remote Code Execution vulnerabilities were found in Apache 2.4.49 and 2.4.50 because of improper URL normalization function “ap_normalize_path” used in “server/util.c”
September 28, 2021
Importance of Cyber Security in E-Commerce
Cyber Security for E-Commerce doesn’t depend on the size of the Organization. Even an Organization with a small number of customers can be compromised. For any type of business, the long-term damage to the brand from an E-commerce breach can be challenging for any Organization to recover from.
September 28, 2021
Importance of Source Code Review
Secure source code review is a complex process involving manual or automated analysis of an application’s source code in order to assess any potential vulnerability in the code.
September 28, 2021
Red Teaming Approach in Cloud Environment
The key point of conducting a red team assessment is to demonstrate how real-world attackers can combine seemingly unrelated exploits not only to the security infrastructure but also with the employees and geographical location of the organization to achieve their goals.
May 30, 2019
CRLF Injection – A high impact bug often overlooked
CRLF injection is a type of injection vulnerability found in Web Applications resulting from the failure of the application to properly sanitize its input values. The presence of CRLF injection in a web application code can be used to escalate it to several varieties of more harmful attacks.
Recent Posts
-
CVE-2022-36804: Pre-Auth RCE in Atlassian
January 23, 2023 -
Identifying and Exploiting Path Traversal or
October 29, 2021 -
Importance of Cyber Security in E-Commerce
September 28, 2021
