Understanding the Open edX Vulnerability The Open edX platform recently revealed a security flaw that allows attackers to exploit an unvalidated redirect_url parameter in survey views. This vulnerability emphasizes the need for robust server security measures, especially for hosting providers and web application developers. What Happened? When a non-existent survey name is requested, Open edX […]

CVE-2026-22675: Security Vulnerability Overview The recent discovery of CVE-2026-22675 highlights a critical security vulnerability in OCS Inventory NG Server. This stored cross-site scripting (XSS) vulnerability affects versions 2.12.3 and earlier. It enables unauthenticated attackers to execute arbitrary JavaScript in users' browsers, posing severe risks to server security. Understanding the Threat This vulnerability arises when attackers […]

Understanding the Open edX Vulnerability The Open edX platform recently revealed a security flaw that allows attackers to exploit an unvalidated redirect_url parameter in survey views. This vulnerability emphasizes the need for robust server security measures, especially for hosting providers and web application developers. What Happened? When a non-existent survey name is requested, Open edX […]

CVE-2026-22675: Security Vulnerability Overview The recent discovery of CVE-2026-22675 highlights a critical security vulnerability in OCS Inventory NG Server. This stored cross-site scripting (XSS) vulnerability affects versions 2.12.3 and earlier. It enables unauthenticated attackers to execute arbitrary JavaScript in users' browsers, posing severe risks to server security. Understanding the Threat This vulnerability arises when attackers […]

Imagine Andrew, who has many servers. He doesn’t want sleepless nights worrying about hacker and bot attacks, that’s why he uses BitNinja. His servers are very important to him, so he likes checking up on how BitNinja working on them. Andrew logs into the Dashboard every day, and a few weeks ago, realised that there […]

In computer science, the term of availability is used to describe the period of time when a service is available. High availability is a quality of a system that assures high-level performance for a given period of time. The main goal of high availability is to eliminate the Single Point of Failures (SPoF) in your infrastructure. To […]

IP address spoofing is a technique used by hackers to disguise their IP address as another IP and gain access to sensitive information or access private services on authorized networks. In some special cases, they can create IP packets that contain a false source IP address and this way hide their original address or impersonate […]

The internet is undoubtedly one of the mankind's greatest achievements which now has more than one billion websites on it. However, something being great doesn’t imply that is also safe and that is the case with our beloved creation. Here, we are going to show you 10 types of sites (or a site in particular) […]

In the previous part of the article, we had looked at some incidents to better understand how attackers try to find SQL injection vulnerabilities. Instead of looking for other incidents, I’ve decided to write a short introduction about testing your own application using publicly available automatic tools. Constantly searching for vulnerabilities on your web applications and services […]

In December 2015 and 2016, there were two blackouts in Ukraine that caused hundreds of thousands of Ukrainians to endure the notorious eastern cold winter for a few hours. At first, this wasn’t an alarming event, as blackouts can happen anywhere and anytime. However, the scale of it made people suspicious about it. The Hacking […]

We always keep our eyes on the logs, data, and charts. We always see abnormalities and unusual behaviours, we have found botnets before, but our recent catch is one of the biggest. These cases are really hard to handle due to the huge number of affected IPs. On the evening of 14th June, we have […]

Nowadays, the Internet plays a huge part in our lives. It gets bigger and bigger every day, now it has more than one billion websites. Most of these sites are built with CMS which stands for Content Management System. It is a tool that provides an easy-to-use method for users without any programming skills in […]

[et_pb_section admin_label="section"] [et_pb_row admin_label="row"] [et_pb_column type="4_4"][et_pb_text admin_label="Text"] Honeypots are a form of proactive threat detections. Proactive threat detection is the next step in improving an organization’s security posture. It has many significant advantages e.g. it provides information about the different kinds of threats attacking the organization and the possible vulnerabilities. It works like a trap A […]

Understanding CVE-2026-35475: An Open Redirect Vulnerability The recent CVE-2026-35475 vulnerability discovered in WeGIA poses significant threats to server security. This issue arises from an open redirect—allowing attackers to redirect users to malicious sites. As web application vulnerabilities continue to evolve, system administrators and hosting providers must remain vigilant. Incident Summary WeGIA, a web management system […]

Introduction to WeGIA Vulnerability The WeGIA Open Redirect vulnerability poses significant risks to hosting providers and system administrators. Identified in versions prior to 3.6.9, this flaw allows attackers to exploit the web application, redirecting users to malicious sites. Understanding this vulnerability is crucial for enhancing server security and user safety. Summary of the Incident WeGIA, […]

Understanding CVE-2026-5631 and Its Implications The digital landscape is ever-evolving, and so are the threats to server security. A recent vulnerability, CVE-2026-5631, has emerged in the assafelovic gpt-researcher application. It highlights the need for vigilance among system administrators and hosting providers. What Is CVE-2026-5631? CVE-2026-5631 raises concerns due to its potential for code injection via […]