Threat Post

XXE Bug Patched in Facebook Careers Third-Party Service

A vulnerability was discovered and patched in a third-party service that handles resumes on Facebook’s careers page. A vulnerability was discovered and patched in a third-party service that handles ...
Threat Post

Adobe Patches XXE Vulnerability in LiveCycle Data Services

Adobe pushed out a hotfix for LiveCycle Data Services patching an XXE vulnerability in BlazeDS. Adobe is today expected to push a hotfix through to implementations of its LiveCycle Data Services ...
PC World

Java and Python FTP attacks can punch holes through firewalls

The Java and Python runtimes fail to properly validate FTP URLs, which can potentially allow attackers to punch holes through firewalls to access local networks. On Saturday, security researcher ...
ZDNet

Severe vulnerability exposes WordPress websites to attack

A severe WordPress vulnerability which has been left a year without being patched has the potential to disrupt countless websites running the CMS, researchers claim. At the BSides technical ...