A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server
Overview : A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request
Cross-Site Request Forgery (CSRF) vulnerability in the user interface of Fortinet FortiSIEM 5.2.5
Overview : A Cross-Site Request Forgery (CSRF) vulnerability in the user interface of Fortinet FortiSIEM 5.2.5 could allow a remote,
Apache ShardingSphere(incubator) deserialization vulnerability
Overview : In Apache ShardingSphere(incubator) 4.0.0-RC3 and 4.0.0, the ShardingSphere’s web console uses the SnakeYAML library for parsing YAML inputs
Puppet Server and PuppetDB may leak sensitive information via metrics API
Overview : Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this
Security issues for SAP products
Overview : Multiple issues was discovered in SAP products Affected Product(s) : SAP Solution Manager 720 SAP Enable Now before
Bot Detection
[vc_row][vc_column width=”1/2″][vc_empty_space height=”15px”][vc_column_text][/vc_column_text][/vc_column][vc_column width=”1/2″][vc_empty_space height=”15px”][vc_column_text] Bot Detection The Problems 20% of all web traffic is bad bots targeting APIs to
Security Notice for CA Unified Infrastructure Management
Overview : Multiple issues was discovered in CA Unified Infrastructure Management Affected Product(s) : UIM product versions 9.20 and below
Vtiger CRM <= 6.3 Authenticated Remote Code Execution
Overview : Vtiger CRM version 6.3 (“Open Source” branch; released on 2015-06-04) and lower are vulnerable to Authenticated Remote Code
Multiple Vulnerabilities on HashiCorp Consul
Overview : HashiCorp Consul and Consul Enterprise 1.4.1 through 1.6.2 Information Disclosure and DDoS Vulnerabilities Affected Product(s) : This vulnerability
Multiple vulnerabilities in IBM QRadar SIEM
Overview : Multiple security vulnerabilities have been fixed and delivered in IBM products. Affected Product(s) : IBM QRadar SIEM 7.3.0
Simple Online Planning Tool multiple vulnerabilities
Overview : SO Planning is an open source online planning tool completely free, designed to easily plan projects / tasks
Cisco Data Center Network Manager Vulnerabilities
Summary Multiple vulnerabilities in the authentication mechanisms of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker
Cross-site request forgery (CSRF) vulnerability in the Storefront Application in DS Data Systems KonaKart before 7.3.0.0
Overview : Cross-site request forgery (CSRF) vulnerability in the Storefront Application in DS Data Systems KonaKart before 7.3.0.0 allows remote
Craft CMS 3.1.12 Pro Cross Site Scripting
Overview : In the 3.1.12 Pro version of the Craft CMS web application, the XSS vulnerability has been discovered in
Automated Bot Protection from Bad Bots
Automated Bot Protection from Bad Bots A leading construction company that helps buyers with home projects from the very beginning
Cloud Based HR Program Success
Cloud Based HR Program Success Provides a lot of innovative approach to automatic detection and blockage of potential attacks in
DDoS Mitigation
DDoS Mitigation The security challenges includes HTTP flood attacks and DDoS attacks that takes the website down. Overview One of
Dynamic Profiling Feature with more Accuracy
Dynamic Profiling Feature with more Accuracy Prophaze dashboard provides a full picture of the activity happening at the application layer.
Prophaze WAF to Secure Transactions
Prophaze WAF to Secure Transactions To protect its web-based transactions from bad actors, the company chose and deployed Prophaze WAF.
Multiple security vulnerabilities have been found in IBM products
Overview : Multiple security vulnerabilities have been fixed and delivered in IBM products. Affected Product(s) : IBM Financial Transaction Manager
Neuvector 3.1 and below to authenticate as a valid AD LDAP user using a blank password
Overview : NeuVector 3.1 when configured to allow authentication via Active Directory, does not enforce non-empty passwords which allows an
Local Privilege Escalation in OpenBSD’s dynamic loader
Overview : OpenBSD through 6.6 allows local users to escalate to root because a check for LD_LIBRARY_PATH in setuid programs
Apache Struts2 vulnerabilities discovered while processing malformed XSLT files
Overview : A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a
phpbb 3.0.x-3.0.6 has an XSS vulnerability
Overview : some issues found in phpbb 3.0.x-3.0.6 with an XSS vulnerability. Affected Product(s) : phpbb 3.0.x-3.0.6 Vulnerability Details :