Neowin

Mozilla releases Firefox 96 with improved Cross Site Request Forgery safeguards

Mozilla has released Firefox 96. It doesn't bring much in the way of new features but it does improve protections against Cross Site Request Forgery which could protect users from attackers. Mozilla ...
Searchenginejournal.com

ThirstyAffiliates WordPress Plugin Vulnerabilities

The United States National Vulnerability Database (NVD) announced that the Thirsty Affiliate Link Manager WordPress plugin has two vulnerabilities that can allow a hacker to inject links. Additionally ...
CSOonline

SSRF attacks explained and how to defend against them

Server-side request forgery (SSRF) attacks consist of an attacker tricking the server into making an unauthorized request. The name itself implies that a request that should have otherwise been made ...
CSOonline

Cisco patches serious flaws in Expressway and ClamAV

Cisco has fixed three serious cross-site request forgery (CSRF) vulnerabilities in its Expressway Series collaboration gateway and a denial-of-service (DoS) flaw in the ClamAV anti-malware engine.