AppCheck Security Blog

FEATURED POST

**CRITICAL RISK** CVE-2023-20269 Being Actively Exploited: Brute Force of Authentication Mechanism via Exploit of Improper Control of Interaction Frequency

read more
Filter by:
View all
Case Studies
Events
General
News
Product
Research
Security Alerts
Appcheck - icons

Known Actively Exploited Vulnerabilities Round-up (29.03.24-04.04.24)

This article covers recent vulnerabilities found to be actively exploited. They are categorised based not only on the category of exploitation, but their impact, and versions affected. This article also informs on any official fix and remediation guidance for the listed vulnerabilities.
Read More
Appcheck - icons

CVE-2024-3094: Embedded Malicious Code in XZ Utils v5.6.0 and v5.6.1

Malicious code was discovered in the upstream tarballs of XZ Utils, starting with version 5.6.0. Under the right circumstances this could potentially enable a malicious actor to gain unauthorised remote access to a system remotely via protocols including SSH, leading to potential total compromise and sequestration of the system.
Read More
Appcheck - icons

New Product Update: Alerts & Notifications Panel

We have updated the AppCheck dashboard to include a updates and alerts panel. This update aims to help provide a better experience for our customers making it easier to highlight changes or problems that could impact scanning their estates.
Read More
Appcheck - icons

Multiple XSS Vulnerabilities Discovered by AppCheck in 10Web PhotoGallery WordPress Plugin

AppCheck has identified multiple Cross-Site Scripting vulnerabilities within the popular “Photo Gallery” Wordpress plugin by 10Web. Full vulnerability detail and remediation advice within.
Read More
Appcheck - icons

What are Domain Hijacking and Subdomain Takeover?

In this blog post we outline the several types of domain takeover and hijacking that are possible, investigate their potential causes, the harm or damage that can result should they be exploited, and how they can best be both prevented from occurring, or else detected should the worst happen.
Read More
Appcheck - icons

Known Actively Exploited Vulnerabilities Weekly Round-up (08.03.24-14.03.24)

This article covers the week prior’s vulnerabilities found to be actively exploited. They are categorised based not only on the category of exploitation, but their impact, and versions affected. This article also informs on any official fix and remediation guidance for the listed vulnerabilities.
Read More
Services
Company
Resources
Keep in touch

AppCheck Ltd. is a company registered in England and Wales with company number 06888174

Get in touch

Start your free trial

Simply complete the form and we’ll send you all you need to activate AppCheck and undertake your FREE scan.
Your details
IP Addresses
URLs