Test and evaluate your WAF before hackers

Since 1991, Web Application Firewall, commonly referred to as WAF, has become one of the most common application security technologies available on the market. Since the last century, WAFs have evolve ...

Continue Reading
RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update (Important) (RHSA-2024:1057)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1057 advisory. pygments: ReDoS in pygments (CVE-2022 ...

Continue Reading
(RHSA-2024:1057) Important: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is appli ...

Continue Reading
Cross-site Websocket Hijacking (CSWSH)

meshcentral is vulnerable to Cross-site Websocket Hijacking(CSWSH). The vulnerability is due to missing origin checks when using the control.ashx endpoint in MeshCentral. If an attacker can convince a ...

Continue Reading
RHEL 8 : Red Hat Virtualization (RHSA-2024:0934)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0934 advisory. An authentication bypass vulnerability was found in ...

Continue Reading
CVE-2024-26135

MeshCentral is a full computer management web site. Versions prior to 1.1.21 a cross-site websocket hijacking (CSWSH) vulnerability within the control.ashx endpoint. This component is the primary mech ...

Continue Reading
MeshCentral cross-site websocket hijacking (CSWSH) vulnerability

We have identified a cross-site websocket hijacking (CSWSH) vulnerability within the control.ashx endpoint of MeshCentral. This component is the primary mechanism used within MeshCentral to perform ad ...

Continue Reading
Cross site scripting

MeshCentral is a full computer management web site. Versions prior to 1.1.21 a cross-site websocket hijacking (CSWSH) vulnerability within the control.ashx endpoint. This component is the primary mech ...

Continue Reading

Back to Main

Subscribe for the latest news: