Developers have updated the WordPress plugin File Manager to fix a critical vulnerability that could have allowed hackers to gain complete access to nearly 700 thousand WordPress websites.
Critical File Manager plugin vulnerability affects 700k WordPress Websites Read More »
The Homeland Security Systems Engineering and Development Institute (HSSEDI), has released the 2020 Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list.
The 2020 CWE Top 25 Most Dangerous Software Weaknesses Read More »
Jenkins, a popular open source automation server software, has patched a Critical buffer corruption vulnerability CVE-2019-17638 in bundled Jetty.
Jenkins patches Critical vulnerability (CVE-2019-17638) Read More »
Magento has released security updates to address vulnerabilities in Magento Commerce 2 (formerly known as Magento Enterprise Edition) and Magento Open Source 2 (formerly known as Magento Community Edition).
Adobe releases security updates for Magento (APSB20-47) Read More »
The Australian Cyber Security Centre (ACSC) has released new guidelines to assist organizations in securing Content Management Systems (CMS). The guidelines include good mitigation advice in areas of patching, account management, hardening and monitoring to name a few.
Guidelines for securing Content Management Systems Read More »
Hackers discovered a bug in PayPal’s Google Pay integration to perform unauthorized transactions via PayPal accounts.
Hackers target PayPal’s Google Pay integration Read More »
Microsoft has introduced a new source code analyzer tool dubbed Microsoft Application Inspector. The tool is designed to “identify interesting features in source code” and can help enable developers understand software components your apps use.
Microsoft introduces Application Inspector Read More »
Cisco’s Talos security group has released details on two High severity buffer overflow vulnerabilities that affect OpenCV libraries.
High severity OpenCV buffer overflow vulnerabilities Read More »
The Open Web Application Security Project (OWASP) has released its OWASP API Security Top 10 2019. This is the first version of the API Top 10. OWASP will likely update the guidelines every three to fours years, similar to the other OWASP Top 10 series.
OWASP API Security Top 10 2019 Read More »
GitHub, one of the world’s leading software development platforms, has launched GitHub Security Lab with aim to secure open source software.
GitHub launches ‘Security Lab’ to help secure open source software Read More »
