SQL injections and cross-site scripting vulnerabilities are among the flaws found in OpenText Document Sciences xPression.
In case you missed it: Researchers claim bugs in EMC, LeakerLocker outwitting mobile app stores, biometrics will rise up, SpyDealer stealing data from Facebook etc and the House of Lords will release report on post-Brexit GDPR.
Multiple SQL injection flaws in EMC products could allow hackers to gain web access and take information from applications.
Known for its highly respected Data Breach Investigations Report, Verizon Enterprise Solutions has suffered its own data breach, after a cyber-criminal was discovered selling information linked to 1.5 million of its customers.
Citrix, a provider of virtualisation, cloud computing and remote assistance software and services to thousands of organisations worldwide, has reportedly been breached which, if true, would lay bare millions of customer endpoints.
French smartphone maker Archos was compromised by a SQL injection attack last Christmas, resulting in the leak of up to 100,000 customer details. But fortunately, passwords and credit card details were not stolen.
This week's In Case You Missed Column looks at websites at risk from Drupal's SQL injection flaw, security features on Android and information security shortcomings in business.
SQL injection to blame for Racing Post incursion
The Wall Street Journal has become the latest US media organisation to be hacked, just days after similar attacks against Vice Media and Metro US.
The actions of just a few gangs can signal a big shift in the industry as a whole - and strangely - the Target breach may have reduced activity by some players.
Cross-site scripting (XSS) and SQL injection attacks remain the most prominent cyber attack method.
Hackers claiming to be affiliated with Anonymous have exposed a list of Navy email logins after breaking into Queen's Harbour Masters websites.