Schwachstellen-InsightsURL confusion vulnerabilities in the wild: Exploring parser inconsistencies10. Januar 2022
Schwachstellen-InsightsOpen source maintainer pulls the plug on npm packages colors and faker, now what?9. Januar 2022
Schwachstellen-InsightsFTC highlights the importance of securing Log4j and software supply chain7. Januar 2022
Schwachstellen-InsightsCTF secrets revealed: TopLang challenge from SnykCon 2021 explained6. Januar 2022
Schwachstellen-InsightsNew Log4j 2.17.1 fixes CVE-2021-44832 remote code execution (but it’s not as bad as it sounds)29. Dezember 2021
Schwachstellen-InsightsSnyk makes it easier to fix Log4Shell with extended free scans21. Dezember 2021
Schwachstellen-InsightsLog4j 2.16 High Severity Vulnerability (CVE-2021-45105) Discovered18. Dezember 2021
Schwachstellen-InsightsFind Log4Shell vulnerabilities in your unmanaged and shaded jars with the Snyk CLI18. Dezember 2021
Schwachstellen-InsightsLog4j 2.15 vulnerability CVE-2021-45046 upgraded to a critical severity arbitrary code execution17. Dezember 2021
Schwachstellen-InsightsLog4Shell in a nutshell (for non-developers & non-Java developers)15. Dezember 2021
Schwachstellen-InsightsThe Log4j vulnerability and its impact on software supply chain security13. Dezember 2021
Schwachstellen-InsightsLog4j vulnerability explained: Prevent Log4Shell RCE by updating to version 2.17.110. Dezember 2021
Schwachstellen-InsightsJava JSON deserialization problems with the Jackson ObjectMapper1. Dezember 2021
Schwachstellen-InsightsHow to effectively detect and mitigate Trojan Source attacks in JavaScript codebases with ESLint10. November 2021