CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...
complianceg

QMSR Explained: How FDA’s New Rule is Impacting Software Validation in MedTech

The FDA has accomplished one of the most important regulatory overhauls in decades by replacing the traditional Quality System Regulation (QSR) with the Quality Management System Regulation (QMSR).
GitHub

Password change for another user - UI does not show validation error

The bug still happens when you try to update the password for a different user - not yourself: If the new password does not meet the defined constraints, you get the "Unknown failure" toast instead of ...