AppCheck Security Blog

FEATURED POST

OWASP API Security Top 10

read more
Filter by:
View all
Case Studies
Events
General
News
Product
Research
Security Alerts
Appcheck - icons

What does it mean when people say security is like an onion?

In this blog post, we look at what the “security onion” model encompasses, how it can be applied, and what value this provides to an organisation’s cybersecurity programme and initiatives.
Read More
Appcheck - icons

Cyber Security Nightmares

Bathed in digital moonlight (glow from a monitor), amidst the web’s labyrinthine threads, our fearless cyber security experts set out to confront your digital adversaries. It’s time to peek out from behind your fingers and explore the spine-chilling world of web application vulnerabilities!
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-5631 Roundcube Webmail < v1.6.4 – Stored (Persistent) Cross-Site Scripting (‘XSS’) via JavaScript Injection in SVG Tags

Roundcube is a web-based IMAP email client. Roundcube’s most prominent feature is the pervasive use of Ajax technology. Roundcube is written in PHP and can be employed in conjunction with a LAMP stack, or any other operating systems that support PHP are supported as well. Roundcube Webmail is designed to run on standard web servers such as Apache, LiteSpeed, Nginx, Lighttpd, Hiawatha or Cherokee in conjunction with a relational database engine. Supported databases are MySQL, PostgreSQL and SQLite. The user interface is rendered in XHTML and CSS. Roundcube incorporates jQuery as part of its distribution, as well as other libraries such as GoogieSpell and TinyMCE.
Read More
Appcheck - icons

A Hackers Bestiary

In this blog post we look at the different types of hackers known to operate, describing their differing motivations, techniques, and practices. Awareness of the different threats they pose can be key to defending organisations from the specific types of attacks that might be launched against them.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-4966 Cloud Software Group (Citrix) NetScaler ADC and NetScaler Gateway – Unauthorised Access to Critical Data and Credentials due to Improper Restriction of Operations within the Bounds of a Memory Buffer

NetScaler is a line of networking products owned by Cloud Software Group. The product suite includes NetScaler, an application delivery controller (ADC), and NetScaler Unified Gateway. NetScaler was acquired by Citrix Systems in 2005. Citrix consolidated all of its networking products under the NetScaler brand in 2016. On September 30, 2022, when Citrix was taken private as part of the merger with TIBCO Software, NetScaler was formed as a business unit under the Cloud Software Group.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-21608 Adobe Acrobat (Multiple Editions) – Arbitrary Code Execution via ‘Use After Free’ (Memory Access Violation) Vulnerability in resetForm Method

Adobe Acrobat is a family of application software and Web services developed by Adobe Inc. to view, create, manipulate, print and manage Portable Document Format (PDF) files.
Read More
Services
Company
Resources
Keep in touch

AppCheck Ltd. is a company registered in England and Wales with company number 06888174

Get in touch

Start your free trial

Simply complete the form and we’ll send you all you need to activate AppCheck and undertake your FREE scan.
Your details
IP Addresses
URLs