Tag feed

#vulnerabilities

68 posts9 followers

Explore Hashnode

Alternatives

Trending tags this week

Rrathsararr-cyber.hashnode.devMay 19 · 11 min read

Building The Technical Foundation For Continuous Vulnerability Visibility

This is the second article in the series. The first one covered why our periodic scanning model had stopped working at scale. This one is the technical account of what we built in its place. A quick n

0

SRSatyam Rastogisatyamrastogi.hashnode.devApr 29 · 6 min read

OpenEMR 38-Vulnerability Chain: Patient Data Exfil & Tampering

Originally published on satyamrastogi.com 38 vulnerabilities discovered in OpenEMR medical software enable attackers to access, modify, and exfiltrate sensitive patient health information (PHI). Analysis of exploitation techniques, affected healthca...

0

JWJustin Waltersexegy.todayApr 11 · 2 min read

Sneak Peek: Unpacking the Security Architecture of Exegy Appliances

In the high-stakes world of market data, the hardware sitting at the edge is often the most critical—and the most overlooked. My upcoming research into Exegy Appliances dives deep into the ecosystem o

0

JWJustin Waltersexegy.todayApr 8 · 3 min read

Security Risks and Remediation: Managing Wireless Network Authentication

A primary vulnerability within the Exegy network architecture lies in its reliance on Pre-Shared Key (PSK) authentication for wireless security. This static, password-based mechanism lacks individual

0

TBTaha Benahmaditahaben.hashnode.devMar 10 · 6 min read

OAuth 2.0 vulnerabilities

OAuth 2.0 vulnerabilities Terminology (OAuth vs OIDC) OAuth 2.0 is an authorization framework. It delegates access to an app without sharing a password. Many products use OAuth to “log in”. That’s usu

0

TBTaha Benahmaditahaben.hashnode.devMar 10 · 3 min read

XXE Article

XXE Definition XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. It often allows an attacker to view files on the application server fi...

0

TBTaha Benahmaditahaben.hashnode.devMar 10 · 7 min read

Path traversal

Path traversal What is path traversal? Path traversal is also known as directory traversal. These vulnerabilities enable an attacker to read arbitrary files on the server that is running an applicatio

0

TBTaha Benahmaditahaben.hashnode.devMar 10 · 2 min read

OS command injection

OS command injection What is command injection? Command injection is a vulnerability that allows an attacker to execute operating system (OS) commands on the server that is running an application. A s

0

TBTaha Benahmaditahaben.hashnode.devMar 10 · 12 min read

HTTP Host header attacks

HTTP Host header attacks What is the HTTP Host header? The HTTP Host header is a mandatory request header as of HTTP/1.1. It specifies the domain name that the client wants to access. For example, whe

0

TBTaha Benahmaditahaben.hashnode.devMar 10 · 9 min read

Authentication Vulnerabilities

Authentication Vulnerabilities Conceptually, authentication vulnerabilities are easy to understand. However, they are usually critical because of the clear relationship between authentication and secu

0

#vulnerabilities

Search Hashnode

#vulnerabilities

Explore Hashnode

Trending tags this week

Building The Technical Foundation For Continuous Vulnerability Visibility

OpenEMR 38-Vulnerability Chain: Patient Data Exfil & Tampering

Sneak Peek: Unpacking the Security Architecture of Exegy Appliances

Security Risks and Remediation: Managing Wireless Network Authentication

OAuth 2.0 vulnerabilities

XXE Article

Path traversal

OS command injection

HTTP Host header attacks

Authentication Vulnerabilities