Enter your email below to sign up for latest updates from Appcheck NG.

Monthly Archives: May 2015

Critical Security Flaw Patched in Magento Blog Extension (CVE-2015-3428)

Background The aheadWorks Blog extension for Magento prior to version 1.3.10 is vulnerable to a critical SQL Injection security flaw. A remote unauthenticated attacker could exploit this vulnerability to take complete control of the affected Magento server and database. With almost 80,000 downloads at the time of writing, the affected component is the most popular […]

Read More

HTML 5 Security

In this video series we discuss the common security flaws encountered in HTML5 enabled websites. Our focus is around Cross-Origin communication  through postMessage and CORS. Download Presentation : AppCheck NG – HTML5 Code Samples Download: Sample Code Part 1: Same Origin Policy Basics In this video we introduce HTML5 and the Same Origin Policy. If […]

Read More