Browsing tag
An investigation of the web application security specialists from the firm Qualys has revealed that more than half of the email servers are affected by a critical remote command execution (RCE) vulnerability. Experts report that this flaw affects the Mail Transfer Agent (MTA) known as Exim, software that runs the email servers to relay emails […]
About three months ago, web application security specialists reported to Apple a vulnerability that allows hackers to trick an intelligent device user into running malicious applications by bypassing the Gatekeeper function. Now, it has been reported that the company hasn’t patched the vulnerability yet. Gatekeeper is an Apple mechanism for verifying code signing and applications […]
Currently Web Application Firewall performing a major role in Web application protection since the web applications are primary targets for cybercriminals and the impact that occurs due to cyber attack is unbearable one for any of the organization and it leads to financial and reputation loss. Also web applications an entry point of the attackers […]
Make sure your organization is aware of the best ways to keep out of harm your critical applications An organization faces both external and internal threats to its web applications’ safety. The different forms of cyberattacks continue to increase and, to increase the complexity of the problem, the threat model has changed dramatically, as many […]
The information security experts said that in many cases what separates administrators from normal users is nothing more but the knowledge of a password. It does not sound glamorous and indeed it is as noisy as it gets but in the majority of the cases bruteforce attacks are the most practical and easy way to […]
A web application vulnerable to Python code injection allows you to send Python code though the application to the Python interpreter on the target server. If you can execute python, you can likely call operating system commands. If you can run operating system commands, you can read/write files that you have access to, and potentially […]