Blog Archiv

Schwachstellen-Insights

77% of 433,000 sites use vulnerable JavaScript libraries

21. November 2017

DevSecOps

Exposed or not, vulnerabilities are dangerous

8. November 2017

Schwachstellen-Insights

Open source vulnerabilities tripped Equifax, how can you defend yourself?

11. September 2017

Schwachstellen-Insights

XSS Attacks: The Next Wave

8. Juni 2017

Schwachstellen-Insights

Which of the OWASP Top 10 Caused the World’s Biggest Data Breaches?

10. Mai 2017

Schwachstellen-Insights

77% of sites use at least one vulnerable JavaScript library

29. März 2017

Schwachstellen-Insights

Type Manipulation: Escaping Template Sandboxes

21. März 2017

Schwachstellen-Insights

Fixing a Prototype Override Protection Bypass Vulnerability in qs

14. März 2017

Schwachstellen-Insights

The Frequency of Known Vulnerabilities in JavaScript Libraries

9. März 2017

Schwachstellen-Insights

Fixing XXE Vulnerabilities in Nokogiri

14. Februar 2017

Schwachstellen-Insights

Understanding Responsible Disclosures

31. Januar 2017

Schwachstellen-Insights

Regular Expression Denial of Service (ReDoS) and Catastrophic Backtracking

17. Januar 2017

Schwachstellen-Insights

The MongoDB hack and the importance of secure defaults

10. Januar 2017

Schwachstellen-Insights

Fixing a Remote Code Execution Vulnerability in EJS

30. November 2016

Schwachstellen-Insights

Fixing Serverless Security Vulnerabilities

20. Oktober 2016

Schwachstellen-Insights

Fixing SQL Injection: ORM is not enough

8. Juni 2016

Schwachstellen-Insights

Fixing `marked` XSS vulnerability

15. Mai 2016

Schwachstellen-Insights

Mitigating ImageMagick vulnerabilities in Node.js

6. Mai 2016

Schwachstellen-Insights

Exploiting Buffer

5. April 2016

Schwachstellen-Insights

How to prevent malicious packages

27. März 2016

Schwachstellen-Insights

Using Node.js event loop for timing attacks

16. Februar 2016