Compass Security News

Lukasz D. identified an XSS vulnerability in the JEditor Jira Plugin.

Offered at the HSR University of Applied Science in Rapperswil (Switzerland), the new degree programm is targeted at experienced IT professionals who…

Ville Koch identified a Cross-Site Scripting vulnerability in Abacus.

Compass analysts identified an XXE vulnerability in Apache Olingo OData 4.0.

Fabio Poloni identified an XSS vulnerability in totemodata®.

"Heime & Spitäler" is the leading magazine for decision-makers at Swiss homes and hospitals. In the current edition, Compass Security analyst Fabio…

Silas Bärtsch identified a vulnerability in VeloCloud™ (VMware), that allows a VeloCloud standard admin user to access user information of other…

Cyber attacks on organizations can be categorized into four different groups. Ivan Bütler tells at Zürichsee-Zeitung what these are.

Emanuele Barbeno and Lukasz D. have found a method to bypass the Anti-SQL injection filter in Alibaba Druid.

Thierry Viaccoz has identified an XML External Entity (XXE) vulnerability in "The Scheduler" plugin for Jira.

Sylvain Heiniger has identified a "Cleartext Storage of Sensitive Information" vulnerability in the MobileIron application Email+.

Michael Fisler and Felix Aeppli have identified vulnerabilities in the Universal Automation Center (UAC).