Mozilla Firefox/Firefox ESR/Thunderbird memory corruption [CVE-2021-43534]
A vulnerability, which was classified as critical, was found in Mozilla Firefox, Firefox ESR and Thunderbird (Web Browser) (version unknown).
Mozilla Network Security Services up to 3.68.0/3.72 Signature heap-based overflow
A vulnerability has been found in Mozilla Network Security Services up to 3.68.0/3.72 (Web Browser) and classified as critical. Affected
PineApp nicUpload.php unrestricted upload
A vulnerability was found in PineApp (affected version not known) and classified as critical. Affected by this issue is some
PineApp /blocking.php url cross site scripting
A vulnerability was found in PineApp (the affected version unknown). It has been classified as problematic. This affects an unknown
Bundler up to 2.2.32 Gemfile argument injection
A vulnerability was found in Bundler up to 2.2.32. It has been declared as critical. This vulnerability affects an unknown
Fortinet FortiWeb up to 6.0.7/6.1.2/6.2.6/6.3.15/6.4.1 confd improper authentication
A vulnerability was found in Fortinet FortiWeb up to 6.0.7/6.1.2/6.2.6/6.3.15/6.4.1. It has been rated as critical. This issue affects an
Samsung Tags prior SMR Dec-2021 Release 1 Redirection information disclosure
A vulnerability classified as problematic was found in Samsung Tags. This vulnerability affects an unknown code of the component Redirection
Samsung SemRewardManager prior SMR Dec-2021 Release 1 BSSID privileges management
A vulnerability, which was classified as problematic, has been found in Samsung SemRewardManager. This issue affects an unknown code block
Samsung Exynos Baseband prior SMR Dec-2021 Release 1 access control
A vulnerability, which was classified as critical, was found in Samsung Exynos Baseband. Affected is some unknown processing. Upgrading to
Samsung Internet up to 16.0.1 SearchKeyword Deeplink input validation
A vulnerability has been found in Samsung Internet up to 16.0.1 and classified as critical. Affected by this vulnerability is
Samsung Internet up to 16.0.1 Sharevia Deeplink improper authorization
A vulnerability was found in Samsung Internet up to 16.0.1 and classified as problematic. Affected by this issue is an
Samsung Smart Capture prior 4.8.02.10 Image insecure storage of sensitive information
A vulnerability was found in Samsung Smart Capture. It has been classified as problematic. This affects some unknown functionality of
Atlassian JIRA Server/Data Center up to 8.19.0 Service Management Project resource improper authentication
A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.19.0 (Bug Tracking Software) and classified as
Atlassian JIRA Server/Data Center up to 8.19.0 Roles Settings roles improper authentication
A vulnerability was found in Atlassian JIRA Server and Data Center up to 8.19.0 (Bug Tracking Software). It has been
KNIME up to 4.13.3 Client Profile pathname traversal
A vulnerability was found in KNIME up to 4.13.3. It has been declared as critical. This vulnerability affects an unknown
KNIME up to 4.13.3 Old WebPortal Login Page cross site scripting
A vulnerability was found in KNIME up to 4.13.3. It has been rated as problematic. This issue affects an unknown
Significance of WAF with Docker
In order to use WAF in Docker containers, you need to create a persistent volume. Then, create a folder called
Web Application Firewall for Startups
A web application firewall for startups is vital to keeping data safe. Even the smallest teams can be vulnerable to
WAF-as-a-Service
Web applications form a massive part of the common network ground that is shared by a business and its customers
What is a WAF
Web application security is a major concern for companies and organizations that rely heavily on the internet as a platform
Best Practices for SaaS Security
Software vendors have identified many areas in which they could improve their offerings in order to better serve their customers
Most Common Cyber Attacks You Must Be Aware of
Cyber attacks are one of the fastest-growing crimes in the cyber world. Cyberspace has become a major force in today’s
Tracking Changes Made from 2013 to 2017 OWASP Reports
OWASP Top 10: 2017 Edition in Comparison with 2013 Edition Image Source: https://owasp.org/www-pdf-archive/OWASP_Top_10-2017_%28en%29.pdf.pdf Major Changes Introduced from 2013 to 2017 Change
Microsoft Windows 10 Update Assistant denial of service [CVE-2021-43211]
A vulnerability has been found in Microsoft Windows 10 Update Assistant (Operating System) (affected version unknown) and classified as critical.