Pentesting

In today’s interconnected digital landscape, an organization’s cybersecurity is only as strong as the weakest link in its supply chain. Recent high-profile security incidents, as we will explore throughout this...

An unauthenticated File Path Traversal vulnerability was detected in the DocMost docker image v0.21.0. At the time of this discovery hundreds of exposed systems may be affected. As observed in...

A serious SQL Injection vulnerability has been identified in the SirsiDynix Horizon Information Portal (IPAC20), affecting multiple versions of the software. This vulnerability, designated as CVE-2024-44903, poses a significant risk...

This is the first of three articles that will be published concerning social engineering campaigns during red teaming exercises. This one will focus on the initial part of setting up...

  GraphQL has revolutionized how APIs are designed and consumed, offering flexibility and efficiency in data fetching. One of the key features of GraphQL is Introspection, which allows clients to...