GIGAZINE

'Lord of SQL Injection', a site where you can learn about SQL injection vulnerabilities while capturing dungeons

First, access Lord of SQL Injection and click '[enter to the dungeon]'. It's my first time to use Lord of SQL Injection, so click 'Join'. Enter the ID, email address, and password used in Lord of SQL ...
dbta

Addressing SAP’s SQL Injection Attacks and Directory Traversal Vulnerabilities

SAP platforms, used by 99 of the Fortune 100 companies and with over 280 million cloud subscribers worldwide, are among the most reliable business applications. As SAP administrators, your role in ...
CSOonline

SQL injection, XSS vulnerabilities continue to plague organizations

Errors that allow SQL injection and cross-site scripting attacks are still the top vulnerabilities that pen-testers find, especially at smaller companies. Despite years topping vulnerability lists, ...
Dark Reading

Cacti Monitoring Tool Spiked by Critical SQL Injection Vulnerability

A critical vulnerability in the Cacti Web-based open source framework for monitoring network performance gives attackers a way to disclose Cacti's entire database contents — presenting a prickly risk ...
The Hacker News

Researchers Identify PassiveNeuron APT Using Neursite and NeuralExecutor Malware

Neursite utilizes an embedded configuration to connect to the C2 server and uses TCP, SSL, HTTP and HTTPS protocols for ...