For March, Patch Tuesday delivers fixes for 83 vulnerabilities

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log ...

Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk

A security flaw in the Ally WordPress plugin used on more than 400,000 sites could allow attackers to extract sensitive data ...
Computer Weekly

Child rapist could have profiled victims through unaudited access to NHS databases

NHS analyst’s conviction for child sexual abuse offences raises concerns over unaudited access to patient data.

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without ...
Computer Weekly

Microsoft patches zero-days in .NET and SQL Server

Zero-days in .NET and SQL Server, and a handful of critical RCE bugs, form the nucleus of Microsoft's March Patch Tuesday update.
The Hacker News

New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries

Nine “LeakyLooker” flaws in Google Looker Studio allowed cross-tenant SQL access across GCP services before being patched.
InfoWorld

The revenge of SQL: How a 50-year-old language reinvents itself

From the browser to the back end, the ‘boring’ choice is exciting again. We look at three trends converging to bring SQL back ...
theregister

Oracle vows 'new era' for MySQL as users sharpen their forks

Oracle has promised a "decisive new approach" to MySQL, the popular open source database it owns, following growing criticism of its approach and the prospect of a significant fork in the code. In a ...
IEEE

Revisiting SQL Statement Logging for SQLite on AWS S3

Abstract: This paper presents SSL-S3, a novel approach that revisits SQL Statement Logging to fully exploit the newly introduced S3 append feature. When a transaction commits, SSL-S3 captures update ...