Dark Reading

Apache ERP Zero-Day Underscores Dangers of Incomplete Patches

Unknown groups have launched probes against a zero-day vulnerability identified in Apache's OfBiz enterprise resource planning (ERP) framework — an increasingly popular strategy of analyzing patches ...
Dark Reading

Apache Issues Patch To Stop Reverse-Proxy Bypass Attack

It all boils down to a missing forward-slash symbol: A newly discovered method of attack could let hackers access databases, firewalls, routers, and other internal network resources via misconfigured ...
CSOonline

Apache OFBiz patches new critical remote code execution flaw

The vulnerability represents a bypass of fixes put in place this year for three critical RCE flaws that had the same root cause and have since been used in attacks. Developers of Apache OFBiz, an open ...
Fudzilla

Apache needs a patch

The Apache Software Foundation has patched a severe vulnerability in the Apache (httpd) web server project that could allow rogue server scripts to execute code with root privileges and take over the ...