Tag: XML

Apache XML Graphics Batik Flaw Exposes Sensitive Information

23 August 2023

Two Server-Side Request Forgery (SSRF) vulnerabilities were found in Apache Batik, which could allow a threat actor to access sensitive …
.NET 7 Removes Its Insecure XmlSecureResolver

23 November 2022

Working with XML is often far more dangerous than most developers want to admit. Because XML files can contain references to other XML …
Update now! Mozilla patches two actively exploited vulnerabilities

7 March 2022

April 30, 2012 – Malwarebytes Anti-Malware is under constant attack. 24 hours per day, 7 days per week, 365 days per …
Spring Boot 2 Rest Security – Basic Authentication

26 March 2019

The Spring Security framework provides declarative security for Spring applications. In this tutorial we secure a simple Rest …
Security firm beats Adobe by patching reader flaw first

13 February 2019

Adobe has patched a flaw that enabled attackers to slurp a user’s network authentication details – but not before someone else patched …
Understanding GDPR the IT Way: Helping Your IT Teams Reach Compliance

3 December 2018

In the previous parts of this blog series, we went through key GDPR principles, data subject rights, controller and processor …
Black Friday special by Emotet: Filling inboxes with infected XML macros

23 November 2018

ESET has detected another large Emotet campaign, probably connected with the increased online shopping and email correspondence around …
XAdES type signing in C++ for Windows

9 September 2018

Using the same library, now you can sign XML data using XAdES, extension to XMLDSIG for signing XML documents. …
Symmetric XML Cryptography in Mule 4

28 May 2018

There are major changes introduced in the security module in Mule 4. Here, we are going to validate changes/enhancements made to the …
Some low-cost Android phones shipped with malware built in

24 May 2018

Avast has found that many low-cost, non-Google-certifed Android phones shipped with a strain of malware built in that could send users to …
Why Enabling SHA256 Support for XML Signatures Breaks JWT Signing

8 January 2018

For some time, there have been bug reports to Kentor.AuthServices, IdentityServer3, and System.IdentityModel.Tokens.Jwt about enabling …
Conserus Image Repository XML external entity vulnerability

12 December 2017

Since the CIR server requested the fictitious file, I could safely assume the server is vulnerable to XXE injection. To proceed to …

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/xml/page/2","queryId":2}

●●●