Connect with us
An IP spoofing vulnerability in Django REST allowed attackers to circumvent the framework’s throttling feature, which is supposed to protect applications against mass requests. Django REST...
After our recent end-of-year retrospectives, it’s time to look back again – this time at some of the most compelling open source hacking tools released during the final quarter...
OSS-Fuzz is now on the lookout for the Log4j Java library flaw. The remotely exploitable flaw in Log4j – the widely deployed Java error logging library...
Open source data analytics and visualization platform Grafana is urging users to upgrade their deployments after a security researcher announced the discovery of a zero-day vulnerability on...
The mishandling of HTTP headers left websites built on top of the Symfony platform vulnerable to web cache poisoning attacks. Symfony, a popular PHP framework for web applications,...
A new hacking tool designed for the discovery of leaked, paired private and public keys which may be harmful has been released to the open source...
Apache Storm, an open source real-time streaming data analytics platform, has patched two vulnerabilities that led to remote code execution (RCE). Discovered and reported by GitHub...
UPDATED Security researchers have gone public about a set of five vulnerabilities in telecoms stack software FreeSwitch. The quintet of flaws – all discovered by a team from German...
A critical vulnerability in popular CI/CD tool GoCD could allow unauthenticated attackers to extract encrypted secrets and poison software build processes – potentially paving the way to supply...
Developers of Discourse, the popular open source forum software, have patched a security flaw that could result in an attacker achieving remote code execution (RCE) on vulnerable systems....
Recent Comments