InfoQ

Quarkus Defends REST APIs against Attack

The Quarkus team released version 2.13.0, a new release that integrates RESTEasy APIs with an integrated control against CSRF attacks, making web applications more resilient against certain types of ...
Bleeping Computer

Critical Cisco bug exposes Expressway gateways to CSRF attacks

Cisco has patched several vulnerabilities affecting its Expressway Series collaboration gateways, two of them rated as critical severity and exposing vulnerable devices to cross-site request forgery ...
Searchenginejournal.com

WordPress Hit With Multiple Vulnerabilities In Versions Prior To 6.0.3

The U.S. Government National Vulnerability Database published warnings of multiple vulnerabilities affecting WordPress. There are multiple kinds of vulnerabilities affecting WordPress, including a ...
ZDNet

One-click account takeover vulnerabilities in Atlassian domains patched

On Thursday, Check Point Research (CPR) said that the bugs were found in the software solutions provider's online domains, used by thousands of enterprise clients worldwide. The Australian vendor is ...
Bleeping Computer

CISA flags PaperCut RCE bug as exploited in attacks, patch now

CISA warns that threat actors are exploiting a high-severity vulnerability in PaperCut NG/MF print management software, which can allow them to gain remote code execution in cross-site request forgery ...