CVE-2022-31447 : MAGICPIN 3.4 SVG FILE XML EXTERNAL ENTITY REFERENCE
Description An XML external entity (XXE) injection vulnerability in Magicpin v3.4 allows attackers to access sensitive database information via a
CVE-2021-41750 : NYSTUDIO107 SEOMATIC PLUGIN 3.4.10 ON CRAFT CMS BASE64 ENCODED URL CROSS SITE SCRIPTING
Description A cross-site scripting (XSS) vulnerability in the SEOmatic plugin 3.4.10 for Craft CMS 3 allows remote attackers to inject
CVE-2022-29225 : Denial Of Service Vulnerability In Envoy Proxy
Description Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 secompressors accumulate decompressed data into an intermediate buffer
CVE-2017-20036 : PHPLIST 3.2.6 BOUNCE RULE /LISTS/ADMIN/ PERSISTENT CROSS SITE SCRITING
Description A vulnerability, which was classified as problematic, was found in PHPList 3.2.6. Affected is an unknown function of the
CVE-2022-31649 : Information Disclosure In Settings UI And API Responses
Description ownCloud owncloud/core before 10.10.0 Improperly Removes Sensitive Information Before Storage or Transfer. For more information https://owncloud.com/security-advisories/cve-2022-31649/
CVE-2022-31813 : Apache HTTP Server: mod_proxy X-Forwarded-For Dropped By Hop-by-hop Mechanism
Description Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client
CVE-2022-26134 : Confluence Pre-Auth Remote Code Execution Via OGNL Injection
Description Confluence is a web-based corporate wiki developed by Australian software company Atlassian. On June 02, 2022 Atlassian released a
CVE-2022-29183 : Reflected XSS Possible Via Pipeline Comparisons
Description GoCD versions 20.2.0 through 21.4.0 (inclusive) are vulnerable to reflected XSS via abuse of the pipeline comparison function’s error
CVE-2022-1840 : Home Clean Services Management System Stored Cross-Site Scripting (XSS)
Description Persistent XSS (or Stored XSS) attack is one of the three major categories of XSS attacks, the others being
CVE-2022-1558 : Multiple Stored Cross-Site Scripting vulnerabilities in WordPress curtain plugin 1.0.2
Description Several Cross-Site Scripting vulnerabilities in the Curtain WordPress plugin. Due to these Cross-Site Scripting vulnerabilities, an attacker would be
CVE-2022-AVAST2 : Self-Defense Bypass via Repairing Function
Description It was noted that there is security checking to prevent some of the Avast processes from loading of undesired/unsigned
CVE-2022-21500 : Oracle Security Alert Advisory
Description This Security Alert addresses vulnerability CVE-2022-21500, which affects some deployments of Oracle E-Business Suite. This vulnerability is remotely exploitable
CVE-2022-1183 : Destroying a TLS session early causes assertion failure
Description On vulnerable configurations, the named daemon may, in some circumstances, terminate with an assertion failure. Vulnerable configurations are those
10+ Best Secure Access Service Edge (SASE) Tools 2024
Secure Access Service Edge (SASE) Tools are the network architecture framework that brings together the cloud native security technologies along
What is Web Application and API Protection (WAAP)?
What is the Meaning of WAAP? Web applications are a centrepiece of the cloud infrastructure for many corps. A web
CVE-2022-30049 : SSRF Vulnerability
Description A Server-Side Request Forgery (SSRF) in Rebuild v2.8.3 allows attackers to obtain the real IP address and scan Intranet
CVE-2022-24878 : Improper Path Handling In Kustomization Files Allows For Denial Of Service
Description The kustomize-controller enables the use of Kustomize’s functionality when applying Kubernetes declarative state onto a cluster. A malicious user
10+ Best Vulnerability Assessment Scanner Tools 2024
Vulnerability Assessment scanner tools identifies the vulnerability of new and existing threats, analyze it, assess the risk attached and then
Prophaze WAF vs Array Networks
Features Prophaze Array Networks Architecture Purely Software-Defined WAF (SDWAF) Hardware defined Solution Microservices Support Kubernetes and Microservices Support Legacy Deployment
Prophaze vs F5
Features Prophaze F5 OWASP top 10 Yes Yes SANS top 25 Yes Yes IP reputations and blacklist and whitelist Yes
Prophaze Vs Imperva
Features Prophaze WAF (Explorer) Imperva Cloud WAF (Pro Version) Architecture ML/AI-Based WAF Custom rule based WAF Microservices Support Kubernetes and
Prophaze Enterprise Vs Cloudflare Enterprise
Cloudflare Enterprise Prophaze Enterprise All Prophaze Business Features Web application firewall (WAF) with unlimited custom rulesets Unlimited Rule Sets +
Cloudflare Business Vs Prophaze Business
Cloudflare Business Prophaze Business All Prophaze Pro Features Web application firewall (WAF) with 25 custom rulesets ML Based WAF with
Cloudflare Pro Vs Prophaze Explorer (Free Trial)
Cloudflare Pro Prophaze Explorer Fast, easy-to-use DNS DNS is changed at Existing DNS Manager (Fast Propagation) Free automated SSL certificates