Vulnerability Insights Archive

URL confusion vulnerabilities in the wild: Exploring parser inconsistencies

January 10, 2022

Open source maintainer pulls the plug on npm packages colors and faker, now what?

January 9, 2022

FTC highlights the importance of securing Log4j and software supply chain

January 7, 2022

CTF secrets revealed: TopLang challenge from SnykCon 2021 explained

January 6, 2022

Log4Shell webinar: What you need to know

January 5, 2022

New Log4j 2.17.1 fixes CVE-2021-44832 remote code execution (but it’s not as bad as it sounds)

December 29, 2021

Snyk makes it easier to fix Log4Shell with extended free scans

December 21, 2021

Log4j 2.16 High Severity Vulnerability (CVE-2021-45105) Discovered

December 18, 2021

Find Log4Shell vulnerabilities in your unmanaged and shaded jars with the Snyk CLI

December 18, 2021

Log4j 2.15 vulnerability CVE-2021-45046 upgraded to a critical severity arbitrary code execution

December 17, 2021

Security in context: When is a CVE not a CVE?

December 17, 2021

Log4Shell in a nutshell (for non-developers & non-Java developers)

December 15, 2021