AppCheck Security Blog

FEATURED POST

Database Hardening

read more
Filter by:
View all
Case Studies
Events
General
News
Product
Research
Security Alerts
Appcheck - icons

**CRITICAL RISK** CVE-2023-49103 OwnCloud (graphAPI Extension < v0.3.1) – Disclosure of Sensitive Credentials to Unauthorised Actors via PhpInfo

ownCloud is an open-source software product for sharing and syncing of files in distributed and federated enterprise scenarios. It allows companies and remote end-users to organize their documents on servers, computers and mobile devices and work with them collaboratively, while keeping a centrally organized and synchronized state. ownCloud supports extensions like online document editing (Collabora, OnlyOffice, Microsoft 365 and Microsoft Online Office).
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-6488 Unitronics Vision Series PLCs – Unsafe of Default or Hard-Coded Administrative Credentials

Unitronics designs, manufactures, and markets advanced control and automation solutions including a complete line of PLCs with integrated HMI, full line of VFDs, a broad array of I/Os and complementary devices, as well as programming software for all aspects of control, motion, HMI, and communications. Unitronics PLCs range from micro-PLC + HMI units for simple machine control, to complex controllers with advanced functions, a variety of onboard IOs and multiple communication options.
Read More
Appcheck - icons

Why DAST Testing is Important

Testing applications for security flaws during production is a vital process of the development lifecycle, and this is where Dynamic Application Security Testing (DAST) comes in. DAST is a security testing approach in application security (AppSec), in which testers assess an application in real-time, while it’s actively running. This process can be conducted even without testers knowing the application’s internal interactions or system-level designs.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-4911 GNU/Linux Operating Systems – Unauthorised Execution of Arbitrary Code via Buffer Overflow Exploit (a.k.a. “Looney Tunables”)

Meep meep! and Thufferin’ Thuccotash! It must be Wabbit Season in vulnerability management – a critical buffer overflow vulnerability dubbed “Looney Tuneables” is being actively exploited (likely by varmints) in GNU/Linux Operating Systems, so ¡Andale! ¡Andale! Time to get patching! Full details below:
Read More
Appcheck - icons

DAST in DevOps: Why It Matters

DevOps is a popular practice, especially among large organizations. However, while it comes with numerous benefits, it presents numerous risks as well. One notable challenge is the increased velocity of deployment, which often complicates how developers implement and ensure application security throughout the development and deployment process.
Read More
Appcheck - icons

Web Application Security Seminar January 2024

If you think you would benefit from understanding how hackers are actively exploiting web applications and APIs today, including hacking demonstrations, prevention techniques, a review of the latest hacks, and a detailed overview of the vulnerability threat landscape, please respond today to secure your seats. (We’ll also take a sneak peek into the benefits, challenges, and recommendations for automated security testing of complex Web Applications and APIs)
Read More
Services
Company
Resources
Keep in touch

AppCheck Ltd. is a company registered in England and Wales with company number 06888174

Get in touch

Start your free trial

Simply complete the form and we’ll send you all you need to activate AppCheck and undertake your FREE scan.
Your details
IP Addresses
URLs