You are here:
Here you will find reports, interviews and news. We give you an insight into our work and report on 0day (zero-day) vulnerabilities discovered by our staff on customer projects or in their research time.
Page 8 of 13
Lukasz D. identified an XSS vulnerability in the JEditor Jira Plugin.
Offered at the HSR University of Applied Science in Rapperswil (Switzerland), the new degree programm is targeted at experienced IT professionals who…
Ville Koch identified a Cross-Site Scripting vulnerability in Abacus.
Compass analysts identified an XXE vulnerability in Apache Olingo OData 4.0.
Fabio Poloni identified an XSS vulnerability in totemodata®.
"Heime & Spitäler" is the leading magazine for decision-makers at Swiss homes and hospitals. In the current edition, Compass Security analyst Fabio…
Silas Bärtsch identified a vulnerability in VeloCloud™ (VMware), that allows a VeloCloud standard admin user to access user information of other…
Cyber attacks on organizations can be categorized into four different groups. Ivan Bütler tells at Zürichsee-Zeitung what these are.
Emanuele Barbeno and Lukasz D. have found a method to bypass the Anti-SQL injection filter in Alibaba Druid.
Thierry Viaccoz has identified an XML External Entity (XXE) vulnerability in "The Scheduler" plugin for Jira.
Sylvain Heiniger has identified a "Cleartext Storage of Sensitive Information" vulnerability in the MobileIron application Email+.
Michael Fisler and Felix Aeppli have identified vulnerabilities in the Universal Automation Center (UAC).
Collaborator Everywhere is a well-known extension for Burp Suite Professional to probe and detect out-of-band pingbacks.
We developed an upgrade to…
Trends & innovations in the IT security industry.
