SQL Injection Vulnerability in itsourcecode's Construction Management System Recently, a significant security vulnerability was identified in itsourcecode's Construction Management System version 1.0. This flaw, found in the borrowedtool.php file, can be exploited to perform SQL injection attacks. Such attacks allow malicious actors to execute arbitrary SQL code, leading to various harmful outcomes including data theft […]

Understanding the Recent Vulnerabilities in IBM Concert Software The cybersecurity landscape is constantly evolving, challenging system administrators and hosting providers to stay vigilant. One recent development that has raised alarms is the vulnerability discovered in IBM Concert software. This vulnerability impacts the server security of various systems, specifically versions 1.0.0 through 2.2.0 of the IBM […]

SQL Injection Vulnerability in itsourcecode's Construction Management System Recently, a significant security vulnerability was identified in itsourcecode's Construction Management System version 1.0. This flaw, found in the borrowedtool.php file, can be exploited to perform SQL injection attacks. Such attacks allow malicious actors to execute arbitrary SQL code, leading to various harmful outcomes including data theft […]

Understanding the Recent Vulnerabilities in IBM Concert Software The cybersecurity landscape is constantly evolving, challenging system administrators and hosting providers to stay vigilant. One recent development that has raised alarms is the vulnerability discovered in IBM Concert software. This vulnerability impacts the server security of various systems, specifically versions 1.0.0 through 2.2.0 of the IBM […]

We have just released an exciting update! We have integrated native support for OpenLiteSpeed into our agent, joining Apache, Nginx, and LiteSpeed in the ranks.  This means our users can enjoy faster, more secure websites, thanks to the smart combination of BitNinja's security features and OpenLiteSpeed's quick web serving capabilities. OpenLiteSpeed: Its Rising Popularity  Let's […]

Earlier this year, we shared our short-term development plans, introducing groundbreaking solutions like FilePatcher and WAF 3.0. However, our vision extends far beyond the immediate horizon. Today, we're thrilled to unveil our long-term server security innovation plans for 2024, marking a significant leap towards. Recap: Our Short-Term Milestones Before we dive into the future, let's […]

As we close another quarter in 2024, we would like to share some exciting numbers with you, especially our malware statistics. These numbers aren't just stats; they're proof of how hard we work to keep the internet a safer place for everyone. Let’s dive in and see exactly what our Threat Management team has achieved. […]

Have you ever paused to consider how secure your server really is? With the rise of AI-generated malware, cyber threats are rapidly changing, emphasizing the importance of a robust Linux malware scanner. This type of malware isn't your typical threat; it's a sophisticated program to damage or exploit devices, services, or networks. So, who really […]

As we gear up for CloudFest's 20th anniversary next week, we're excited to share with you the highlights of the event's agenda and the speeches we're most looking forward to. This milestone event has always been a melting pot of ideas, collaborations, and breakthroughs, and this year, as we celebrate two decades of innovation and […]

We're preparing for CloudFest by bringing a suite of new developments and innovations. But if you can't join us or can't contain your excitement, we've got something special for you. Why wait when you can be among the first to dive into our latest cyber security solutions? Join us at our exclusive webinar on March […]

Introducing the AI File Patcher module in our new BitNinja version (V3.10.6) Most systems will automatically update, if you have specific settings or applications preventing automatic updates, you can follow our documentation on how to proceed to have the latest version installed. Short but great news are on the way! The newest BitNinja version (V3.10.6) […]

As a server owner, have you ever felt like you're in a constant game of cat and mouse with cyber threats? It's a wild world out there, with some crafty digital pests aiming to take a bite out of your servers. Today, we spotlight those particularly sneaky ones—the heavy hitters that slip through the cracks […]

Introduction to CVE-2026-5705 The cybersecurity landscape continually evolves, posing new challenges for system administrators and hosting providers. Recently, a significant vulnerability, identified as CVE-2026-5705, has been reported in the code-projects Online Hotel Booking software. This vulnerability affects the booking endpoint, enabling remote exploitation through cross-site scripting (XSS). Understanding and mitigating such vulnerabilities is critical for […]

Understanding the CVE-2026-5692 Vulnerability CVE-2026-5692 is a serious command injection vulnerability identified in the Totolink A7100RU router. The issue arises in the function setGameSpeedCfg within the file /cgi-bin/cstecgi.cgi. By manipulating the argument enable, attackers can execute arbitrary operating system commands from a remote location. Why This Matters for Hosting Providers For system administrators and hosting […]

Understanding the Open edX Vulnerability The Open edX platform recently revealed a security flaw that allows attackers to exploit an unvalidated redirect_url parameter in survey views. This vulnerability emphasizes the need for robust server security measures, especially for hosting providers and web application developers. What Happened? When a non-existent survey name is requested, Open edX […]