Disclosures
Filter Content:
Categories:
Tags:
March 11, 2024 | Attack Blogs, Disclosures
NextChat a.k.a ChatGPT-Next-Web, a popular Gen AI ChatBot, is vulnerable to a critical server-side request forgery (SSRF) vulnerability.
January 12, 2024 | Attack Blogs, Disclosures
Mirth Connect, by NextGen HealthCare, is an open source data integration platform widely used by healthcare companies. Versions prior to…January 12, 2024 | Attack Blogs, Disclosures
Introduction Back in Aug. 2023 we released an advisory for CVE-2023-39143, a critical vulnerability that affects Windows installs of the…-
October 25, 2023 | Attack Blogs, Disclosures
Mirth Connect, by NextGen HealthCare, is an open source data integration platform widely used by healthcare companies. Versions prior to… September 6, 2023 | Attack Blogs, Disclosures
Apache Superset is a popular open source data exploration and visualization tool. In a previous post, we disclosed a vulnerability,…August 4, 2023 | Attack Blogs, Disclosures
Summary CVE-2023-39143 is a critical vulnerability we disclosed to PaperCut that affects the widely used PaperCut NG/MF print management software.…April 25, 2023 | Attack Blogs, Disclosures
Apache Superset is an open source data visualization and exploration tool. It has over 50K stars on GitHub, and there…June 29, 2022 | Disclosures
CVE-2022-28219 is an unauthenticated remote code execution vulnerability affecting Zoho ManageEngine ADAudit Plus, a compliance tool used by enterprises to…November 9, 2021 | Disclosures
During our assessment of the ResourceSpace code base, we found three new vulnerabilities that could be exploited by an unauthenticated…March 8, 2021 | Disclosures
Zabbix is an enterprise IT network and application monitoring solution. In a routine review of its source code, we discovered…
