Latest blog articles

Our latest articles.

Get insights on the latest trending CVE's, our own novel security research and everything which related to bolstering the security posture of your externally facing assets.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
CVE
January 24, 2024
Shockwave Attack Surface Management - CVE-2023-7028 0 Click Account Takeover affecting GitLab.

CVE-2023-7028 is a Critical CVE affecting GitLab instances that allows malicious actors to reset arbitrary existing user password within a single HTTP request, and gain full access onto the instance.

CVE
January 1, 2024
CVE-2023-35078 is a Critical CVE on Ivanti's MobileIron product that allows malicious actors to dump the entire PII, devices and users on the MobileIron system in a matter of a single request.

Shockwave Attack Surface Management - CVE-2024-23897 Jenkins - Arbitrary file read vulnerability through the CLI

Research
July 15, 2024
Shockwave Identifies Web Cache Deception and Account Takeover Vulnerability affecting OpenAI's ChatGPT

Discover the story of our founder who uncovered the world's first documented Web Vulnerability that impacted OpenAI's ChatGPT, and collaborated with the team to swiftly remediate it within hours.

The security first platform

Supercharge your security

Identify, Secure and Continuously Monitor your Externally Facing Attack Surface.
Significantly Improve your security posture within minutes with an easy, smooth onboarding process.

Get Started
© 2024 Shockwave. All rights reserved.
Terms & Conditions
Cookies
© 2024 Shockwave. All rights reserved.