As cyber threats evolve, the need for robust server security measures has become critical. Recently, multiple stored cross-site scripting (XSS) vulnerabilities were disclosed in various versions of Liferay, a popular open-source digital experience platform. Overview of the Vulnerability These vulnerabilities, identified as CVE-2025-43822, affect Liferay Portal 7.4.3.15 through 7.4.3.111 and Liferay DXP versions from 2023.Q3.1 […]

The cybersecurity landscape is ever-evolving, and staying updated on vulnerabilities is crucial for server administrators and hosting providers. Recently, a notable vulnerability, identified as CVE-2025-11415, was found in the PHPGurukul Beauty Parlour Management System. This vulnerability poses a serious risk that could be exploited remotely, leading to significant security concerns. Summary of the CVE-2025-11415 Incident […]

As cyber threats evolve, the need for robust server security measures has become critical. Recently, multiple stored cross-site scripting (XSS) vulnerabilities were disclosed in various versions of Liferay, a popular open-source digital experience platform. Overview of the Vulnerability These vulnerabilities, identified as CVE-2025-43822, affect Liferay Portal 7.4.3.15 through 7.4.3.111 and Liferay DXP versions from 2023.Q3.1 […]

The cybersecurity landscape is ever-evolving, and staying updated on vulnerabilities is crucial for server administrators and hosting providers. Recently, a notable vulnerability, identified as CVE-2025-11415, was found in the PHPGurukul Beauty Parlour Management System. This vulnerability poses a serious risk that could be exploited remotely, leading to significant security concerns. Summary of the CVE-2025-11415 Incident […]

Who doesn't want faster scans? We've made sure to make this wish a reality, and to crush some bugs along the way! All this, and more in our new BitNinja version (V3.3.1) Most systems will automatically update, if you have specific settings or applications preventing automatic updates, you can follow our documentation on how to […]

BitNinja is now compatible with Enhance, so their users can enjoy top-notch protection. Working closely with their team also allows us to have full UI integration in the near future! An article will soon follow this release note that covers it in more detail. Most systems will automatically update, if you have specific settings or […]

We are delighted to announce a recent integration launch that combines the power of BitNinja and 360 Monitoring, providing users with a comprehensive security solution with enhanced benefits.However, those who attended CloudFest may already have caught the booth talk between our CEO, George Egri, and the CTO of WebPros, Jan Löffler, about this exciting partnership […]

Have you ever wished you could edit and change configurations directly from the dashboard? I have excellent news then, as your wish will soon come true thanks to Cloud Configuration. This update contains some of the essentials for this feature, with the live version coming soon! Stability improvements and several bug fixes await you! All […]

We want to make sure that our language is inclusive and doesn't promote any kind of discrimination. It is because we understand that some words and phrases can contribute to a culture of exclusivity and racial stereotypes. That's why we have decided to update our terminology to encourage inclusivity and fight against racial discrimination. The […]

Recently, a high-severity WordPress vulnerability was discovered in the popular Elementor Pro plugin. This could potentially allow attackers to take control of affected websites. If you're using this plugin, you may be wondering what you can do to safeguard your website from this vulnerability. At BitNinja, we understand the importance of website security. Therefore, we […]

The BitNinja team had the privilege of attending CloudFest Europe 2023, the world's largest cloud festival held at Europa Park, Rust. The event was full of industry experts, tech enthusiasts, and cloud service providers, making it the perfect opportunity for us to showcase our latest developments and solutions, network with peers, and gain valuable insights […]

The cybersecurity landscape continues to evolve, and recent findings have raised alarms regarding a new vulnerability: CVE-2025-11417. This critical flaw affects the Campcodes Advanced Online Voting Management System, particularly its voters_add.php file, leading to severe security implications. Overview of the Vulnerability CVE-2025-11417 introduces an unrestricted file upload vulnerability. Attackers can exploit this weakness by manipulating […]

As cybersecurity threats evolve, server security remains a critical concern for system administrators and hosting providers. A recent vulnerability, CVE-2025-61999, highlights the importance of safeguarding web application environments. Incident Summary The OPEXUS FOIAXpress application, prior to version 11.13.3.0, allows administrative users to upload SVG files. This feature can be exploited to execute malicious JavaScript when […]

Cybersecurity threats evolve continually, demanding vigilance from system administrators and hosting providers. Recently, a serious vulnerability (CVE-2025-61997) has come to light regarding the OPEXUS FOIAXpress platform. This post will detail the implications of this vulnerability, why it’s critical for server security, and how to mitigate its effects. Understanding CVE-2025-61997 The OPEXUS FOIAXpress, prior to version […]