all InfoSec news
Appwrite Blind SSRF
Jan. 30, 2024, 8:49 a.m. | Rémy Marot
Tenable Research Advisories www.tenable.com
A researcher at Tenable discovered an unauthenticated Server-Side Request Forgery (SSRF) vulnerability via the '/v1/avatars/favicon' endpoint as a result of a bypass of an incomplete fix for CVE-2023-27159.
Rémy Marot
Tue, 01/30/2024 - 03:49
appwrite bypass cve endpoint favicon fix forgery request researcher result server server-side request forgery ssrf tenable unauthenticated vulnerability
More from www.tenable.com / Tenable Research Advisories
Approach.App Multiple Vulnerabilities
1 week, 4 days ago |
www.tenable.com
Path Traversal Affecting Multiple CData Products
3 weeks, 4 days ago |
www.tenable.com
Arcserve Unified Data Protection 9.2 Multiple Vulnerabilities
1 month, 2 weeks ago |
www.tenable.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Professional Services Resident Consultant / Senior Professional Services Resident Consultant - AMS
@ Zscaler | Bengaluru, India
Head of Security, Risk & Compliance
@ Gedeon Richter Pharma GmbH | Budapest, HU
Unarmed Professional Security Officer - County Hospital
@ Allied Universal | Los Angeles, CA, United States
Senior Software Engineer, Privacy Engineering
@ Block | Seattle, WA, United States
Senior Cyber Security Specialist
@ Avaloq | Bioggio, Switzerland