Day: March 17, 2020

Umbraco CMS 8.5.3 allows an authenticated file upload

[vc_row][vc_column][vc_column_text] Overview : Umbraco CMS 8.5.3 allows an authenticated file upload (and consequently Remote Code Execution) via the Install Package

Web Application Firewall

Citrix SD-WAN 10.2.x before 10.2.6 and 11.0.x before 11.0.3 has Missing SSL Certificate Validation

[vc_row][vc_column][vc_column_text] Overview : Citrix SD-WAN 10.2.x before 10.2.6 and 11.0.x before 11.0.3 has Missing SSL Certificate Validation.An information disclosure vulnerability

Web Application Firewall

cPanel before 82.0.18 Account bypass vulnerability

[vc_row][vc_column][vc_column_text] Overview : cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions (SEC-508).

Web Application Firewall

SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 SQL Injection Vulnerability

[vc_row][vc_column][vc_column_text] Overview : SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow for an invalid Bean