As cyber threats evolve, the need for robust server security measures has become critical. Recently, multiple stored cross-site scripting (XSS) vulnerabilities were disclosed in various versions of Liferay, a popular open-source digital experience platform. Overview of the Vulnerability These vulnerabilities, identified as CVE-2025-43822, affect Liferay Portal 7.4.3.15 through 7.4.3.111 and Liferay DXP versions from 2023.Q3.1 […]

The cybersecurity landscape is ever-evolving, and staying updated on vulnerabilities is crucial for server administrators and hosting providers. Recently, a notable vulnerability, identified as CVE-2025-11415, was found in the PHPGurukul Beauty Parlour Management System. This vulnerability poses a serious risk that could be exploited remotely, leading to significant security concerns. Summary of the CVE-2025-11415 Incident […]

As cyber threats evolve, the need for robust server security measures has become critical. Recently, multiple stored cross-site scripting (XSS) vulnerabilities were disclosed in various versions of Liferay, a popular open-source digital experience platform. Overview of the Vulnerability These vulnerabilities, identified as CVE-2025-43822, affect Liferay Portal 7.4.3.15 through 7.4.3.111 and Liferay DXP versions from 2023.Q3.1 […]

The cybersecurity landscape is ever-evolving, and staying updated on vulnerabilities is crucial for server administrators and hosting providers. Recently, a notable vulnerability, identified as CVE-2025-11415, was found in the PHPGurukul Beauty Parlour Management System. This vulnerability poses a serious risk that could be exploited remotely, leading to significant security concerns. Summary of the CVE-2025-11415 Incident […]

Summer is here, and while most people are taking a break, cyber threats never do. During this hot season, it's crucial to keep our data and servers secure. At BitNinja, the summer months are no exception: we don't go on vacation; we stand guard! Continuous Protection When It Matters Most Over the past few months, […]

The BitNinja team attended the heart of the WordPress community at WordCamp Europe 2024 in Torino, embracing the latest technological trends and solutions under the theme of innovation and unity. BitNinja’s Participation Mark Bacskó, our savvy Product Manager, and Ben Tóth, our charismatic Sales Account Executive, flew the BitNinja flag at the event. They had […]

Malware Detection We resolved an issue that caused crashes when adding new Yara rules to our signature collection. This update ensures the Yara workers do not crash upon receiving a new rule while running. SSL Certificate Users can now manually add SSL certificates directly to the JSON file (CertificateMapping). Manually added certificates will take precedence […]

Today, we’re exploring BitNinja’s cutting-edge malware detection technologies.  As cyber threats continue to evolve, staying ahead is not just an option—it's a necessity. We proudly offer two robust solutions: our reliable traditional server-based malware detection and our revolutionary AI-supported CloudScan.  This article aims to provide you with a detailed understanding of how our malware detection […]

Latest Enhancements: User Counter This update resolves previous inaccuracies, now providing users with more accurate feedback on the number of active participants in the system. SpamDetection We have resolved an issue that previously prevented the SpamDetection service from shutting down properly. This fix ensures that the feature can now be deactivated smoothly without generating errors. […]

We are delighted to share the resounding success of the BitNinja integration with the Enhance control panel (UI integration will be available at a later date), highlighted by the enthusiastic feedback from our users. This collaboration has brought forth a unique server security solution that not only enhances security but also integrates seamlessly with the […]

BitNinja 3.10.17 introduces upgrades to enhance operational efficiency and reliability, including newly implemented Agent synchronization logic, refined IP filter rules. Latest Enhancements: MalwareDetection Module Enhanced We have addressed a bug that led to time zone mismatches, so this change will enhance the accuracy of malware detection activities across different geographical locations. IpFilter module adjustment We […]

Configuration setting updates - default and recommended values, MalwareDetection new config option, IP rule management for even more reliable and smoother operation in our new BitNinja versions (3.10.16) Setting Minimum and Maximum Values in Config To enhance system performance and stability, we have updated some default and recommended values. This adjustment ensures that all configurations […]

Here at BitNinja, we always strive to offer innovative solutions that not only enhance server security but also minimize resource usage. We're excited to introduce our latest feature, the AI-powered Patch Manager module. THE IMPORTANCE OF VIRTUAL PATCHING In the world of content management systems (CMS) - like WordPress, Joomla, and Drupal -, new vulnerabilities […]

The cybersecurity landscape continues to evolve, and recent findings have raised alarms regarding a new vulnerability: CVE-2025-11417. This critical flaw affects the Campcodes Advanced Online Voting Management System, particularly its voters_add.php file, leading to severe security implications. Overview of the Vulnerability CVE-2025-11417 introduces an unrestricted file upload vulnerability. Attackers can exploit this weakness by manipulating […]

As cybersecurity threats evolve, server security remains a critical concern for system administrators and hosting providers. A recent vulnerability, CVE-2025-61999, highlights the importance of safeguarding web application environments. Incident Summary The OPEXUS FOIAXpress application, prior to version 11.13.3.0, allows administrative users to upload SVG files. This feature can be exploited to execute malicious JavaScript when […]

Cybersecurity threats evolve continually, demanding vigilance from system administrators and hosting providers. Recently, a serious vulnerability (CVE-2025-61997) has come to light regarding the OPEXUS FOIAXpress platform. This post will detail the implications of this vulnerability, why it’s critical for server security, and how to mitigate its effects. Understanding CVE-2025-61997 The OPEXUS FOIAXpress, prior to version […]