Cybozu Remote Service 3.1.8/3.1.9 HTTP Header injection
A vulnerability, which was classified as critical, was found in Cybozu Remote Service 3.1.8/3.1.9. This affects an unknown function of
Canon Oce Print Exec Workgroup 1.3.2 Host Header injection
A vulnerability classified as critical has been found in Canon Oce Print Exec Workgroup 1.3.2. Affected is some unknown processing
IBM API Connect up to 5.0.8.10 HTTP Host Header injection
A vulnerability was found in IBM API Connect up to 5.0.8.10 (Automation Software). It has been declared as problematic. Affected
nodemailer up to 6.6.0 HTTP Header injection
A vulnerability classified as critical was found in nodemailer up to 6.6.0. Affected by this vulnerability is an unknown code
Appnitro Machform up to 15 HTTP Host Header injection
A vulnerability was found in Appnitro Machform up to 15. It has been declared as critical. Affected by this vulnerability
OpenVAS Greenbone Security Assistant/Greenbone OS Host Header injection
A vulnerability, which was classified as critical, has been found in OpenVAS Greenbone Security Assistant and Greenbone OS (affected version
GoAhead Web server HTTP Header Injection vulnerability
Overview : An issue was discovered in Embedthis GoAhead 2.5.0. Certain pages (such as goform/login and config/log_off_page.htm) create links containing
CVE-2024-3799 : PHONIEBOX UP TO 2.7 HEADER PARAMETER OS COMMAND INJECTION
Description Insecure handling of POST header parameter body included in requests being sent to an instance of the open-source project
Visual Tools DVR VX16 4.2.28.0 HTTP Header cgi-bin/slogin/login.py User-Agent os command injection
A vulnerability, which was classified as critical, was found in Visual Tools DVR VX16 4.2.28.0. Affected is an unknown functionality
Edgecore ECS2020 1.0.0.0 HTTP Header /EXCU_SHELL command1 command injection
A vulnerability has been found in Edgecore ECS2020 1.0.0.0 and classified as critical. Affected by this vulnerability is some unknown
ExponentCMS up to 2.6 HTTP Host Header /exponent_constants.php injection
A vulnerability classified as critical was found in ExponentCMS up to 2.6. This vulnerability affects some unknown processing of the
What Is API Injection?
Home What Is API Injection? 4.2k Views 6 min. read Learning Center Related Content How Do APIs Get Hacked? What
CVE-2024-39736 : IBM DATACAP NAVIGATOR 9.1.5/9.1.6/9.1.7/9.1.8/9.1.9 HTTP HEADER HOST HTTP HEADERS FOR SCRIPTING SYNTAX
Description IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to HTTP header injection, caused by improper validation
Injection Prevention
Home Injection Prevention PROPHAZE APPSEC PLATFORM What is Prophaze WAF? How Prophaze WAF Works? System Requirements Performance SSL Termination Modes
Tracking Down New WordPress Popup Injection Malware
A new variant of popup injector WordPress malware is spreading and affecting 1000s of WordPress websites. The web master was
CRLF/HTML entity injection with most recent version of PHPMyAdmin #16056
Overview : ** DISPUTED ** phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astring%0D%0A inputs to login form fields causing CRLF sequences
phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability
Overview : In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was found in retrieval of
ERPNext 11.1.47 allows blog?blog_category= Frame Injection.
Overview : ERPNext 11.1.47 allows blog?blog_category= Frame Injection. Affected Product(s) : Affected Software: ERPNext Affected Versions: 11.1.47 Vulnerability Details : CVE ID
SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 SQL Injection Vulnerability
Overview : SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow for an invalid Bean ID
Potential CRLF injection attacks in Zend_Mail
Overview : CRLF injection vulnerability in Zend\Mail (Zend_Mail) in Zend Framework before 1.12.12, 2.x before 2.3.8, and 2.4.x before 2.4.1
How Do Attackers Bypass a CDN?
Home How Do Attackers Bypass a CDN? 1.9k Views 7 min. read Learning Center Related Content Can a CDN Slow
What Is a WAF Vulnerability?
Home What Is a WAF Vulnerability? 2.1k Views 7 min. read Learning Center Related Content What Is a WAF False
What Is CDN Cache Poisoning?
Home What Is CDN Cache Poisoning? 1.9k Views 7 min. read Learning Center Related Content Does a CDN Cause Security
CVE-2024-6923 : PYTHON SOFTWARE CPYTHON UP TO 3.13.ORC2 EMAIL MODULE DESERIALIZATION
Description There is a MEDIUM severity vulnerability affecting CPython. The email module didn’t properly quote newlines for email headers when