Information security
fromThe Hacker News
1 day agoActive Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution
Hard-coded cryptographic keys in Gladinet CentreStack/Triofox allow decryption or forging of access tickets, enabling access to web.config and potential ViewState deserialization leading to remote code execution.