Skip to content

AppSec Observer: vulnerabilities (3)

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    Contrast Security’s Approach to SCA Enables Vulnerability Prioritization and Faster Remediation

    Contrast Security’s Approach to SCA Enables Vulnerability Prioritization and Faster Remediation

    Open Source Is a Mainstay in Modern Development It goes without saying that modern applications are rarely built from..

    Eating Our Own Cooking at Contrast: Securing and Protecting TeamServer

    Eating Our Own Cooking at Contrast: Securing and Protecting TeamServer

    It’s very rare that one has an opportunity to experience the development of a major software solution from the ground..

    Authenticated Remote Code Execution in OpenMRS

    Authenticated Remote Code Execution in OpenMRS

    Early in May of 2020, Contrast Labs was exploring different ways in which we could help the community or world combat..

    XML External Entity (XXE) Pitfalls With JAXB

    XML External Entity (XXE) Pitfalls With JAXB

    The Java XML Binding (JAXB) runtime that ships with OpenJDK 1.8 uses a default configuration that protects against XML..

    Apache Struts CVE-2019-0230 Vulnerabilities and How to Block Attacks

    Apache Struts CVE-2019-0230 Vulnerabilities and How to Block Attacks

    Note: Special thanks to Alvaro Muñoz (https://twitter.com/pwntester) for correcting us on some very important technical..

    social-media-role-discovering-vulnerabilities

    What Role Should Social Media Play in Discovering Vulnerabilities?

    New research from the Pacific Northwest National Laboratory (PNNL) Data Sciences and Analytics Group shows that 25% of..

    cyberattacks-applications-grow-exponentially

    Cyberattacks on Applications Grow Exponentially, Pose Serious Risk

    The need for digital engagement with customers, partners, and employees has never been greater than it is today. Most..

    Application Security Risk Is 1.7x Higher for Organizations That Fail to Manage Security Debt

    Application Security Risk Is 1.7x Higher for Organizations That Fail to Manage Security Debt

    Analyzing data captured from June 2019 to May 2020, Contrast Labs found that applications experienced over 13,000..

    Assessing API Security Risks, Plotting a Solution

    Assessing API Security Risks, Plotting a Solution

    Application programming interfaces (APIs) are increasingly opening paths to vulnerabilities further down in application..