SOAP - API Security Blog

Exploit for Cross-Site Request Forgery (CSRF) in F5 Big-Iq Centralized Management

# CVE-2022-41622 In all versions, BIG-IP and BIG-IQ are vulnera...Read More ...

22 декабря, 2022

CVSS3 - HIGH

Exploit for Improper Authentication in Apache Soap

# CVE-2022-45378 ** UNSUPPPORTED WHEN ASSIGNED **In the default...Read More ...

22 декабря, 2022

CVSS3 - CRITICAL

CVE-2022-41040 and CVE-2022-41082 â zero-days in MS Exchange

![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2022/12/19160500/abstract_black_matrix-990x400.jpg) ## Summary At the end of September, GTSC reported an attack on critical infras ...

19 декабря, 2022

CVSS3 - CRITICAL

CVSS2 - HIGH

[SECURITY] [DLA 3243-1] php7.3 security update

- ------------------------------------------------------------------------- Debian LTS Advisory DLA-3243-1 [email protected] https://www.debian.org/lts/security/ ...

15 декабря, 2022

CVSS3 - CRITICAL

CVSS2 - MEDIUM

Can ChatGPT be used to attack your APIs? | API Security Newsletter

The (winter) solstice is fast approaching, along with the end-of-year holidays - before we know it, it'll be 2023 already! And with the fall behind us, our hive has been busy putting the finishing tou ...

12 декабря, 2022

CVSS3 - CRITICAL

CVE-2022-41622

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

06 декабря, 2022

Spring WS Samples upgraded for Spring Boot 3.0!

With the recent [announcement of Spring Boot 3.0 going GA](), some of you may be interested in upgrading your Spring Web Services-based applications to take full advantage of this. The Spring WS team ...

02 декабря, 2022

Metasploit Weekly Wrap-Up

## F5 Big-IP ![Metasploit Weekly Wrap-Up](https://blog.rapid7.com/content/images/2022/11/metasploit-ascii-1-2-1.png) This weekâs Metasploit release contains 2 new modules released as part of the ...

25 ноября, 2022