PT-2025-19788 · Keystone · Keystone

Name of the Vulnerable Software and Affected Versions: Keystone versions prior to 6.5.0 Description: Keystone, a content management system for Node.js, has an issue where field.isFilterable access control can be bypassed in update and delete mutations by adding additional unique filters. These...

Attackers Shifting to Delivering Unknown Malware Via FTP and Web Pages

The bulk of “unknown” malware is being delivered to systems via Web-based attacks, proxies and FTP sessions, according to a study released by Palo Alto Networks this week. The study dubbed “The Modern Malware Review,” found more than 26,000 malware samples, and focuses on what the firm calls...