WAF API Gateway
Prophaze API Gateway This gateway helps businesses create, manage, and secure APIs with ease. Acting as a protective barrier, it
Vulnerabilities Discovered in CIPAce Enterprise Platform
Overview : A Directory Traversal issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make HTTP
Leantime before versions 2.0.15 and 2.1-beta3 has a SQL Injection vulnerability.
Overview : Leantime before versions 2.0.15 and 2.1-beta3 has a SQL Injection vulnerability. The impact is high. Malicious users/attackers can
GitLab EE/CE 8.11 through 12.9.1 allows blocked users to pull/push docker images.
Overview : GitLab EE/CE 8.11 through 12.9.1 allows blocked users to pull/push docker images. References Note: References are provided for the convenience
Community plugin 2.9.e-beta for Piwigo allows users to set image information on images in albums for which they do not have permission,
Overview : The Community plugin 2.9.e-beta for Piwigo allows users to set image information on images in albums for which
SQL injection vulnerability was discovered in Micro Focus Service Manager Automation (SMA)
Overview : An SQL injection vulnerability was discovered in Micro Focus Service Manager Automation (SMA), affecting versions 2019.08, 2019.05, 2019.02,
ERPNext 11.1.47 allows blog?blog_category= Frame Injection.
Overview : ERPNext 11.1.47 allows blog?blog_category= Frame Injection. Affected Product(s) : Affected Software: ERPNext Affected Versions: 11.1.47 Vulnerability Details : CVE ID
LogicalDoc before 8.3.3 allows SQL Injection
Overview : LogicalDoc before 8.3.3 allows SQL Injection. LogicalDoc populates the list of available documents by querying the database. This
SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow for an invalid Bean ID to be submitted
Overview : SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow for an invalid Bean ID
cPanel before 84.0.20 allows a demo account to achieve remote code execution
Overview : cPanel before 84.0.20 allows a demo account to achieve remote code execution via a cpsrvd rsync shell (SEC-544).
Citrix SD-WAN 10.2.x before 10.2.6 and 11.0.x before 11.0.3 has Missing SSL Certificate Validation
Overview : Citrix SD-WAN 10.2.x before 10.2.6 and 11.0.x before 11.0.3 has Missing SSL Certificate Validation.An information disclosure vulnerability has
cPanel before 82.0.18 Account bypass vulnerability
Overview : cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions (SEC-508). Affected
Potential CRLF injection attacks in Zend_Mail
Overview : CRLF injection vulnerability in Zend\Mail (Zend_Mail) in Zend Framework before 1.12.12, 2.x before 2.3.8, and 2.4.x before 2.4.1
Cloud Based HR Program Success
Cloud Based HR Program Success Provides a lot of innovative approach to automatic detection and blockage of potential attacks in
phpbb 3.0.x-3.0.6 has an XSS vulnerability
Overview : some issues found in phpbb 3.0.x-3.0.6 with an XSS vulnerability. Affected Product(s) : phpbb 3.0.x-3.0.6 Vulnerability Details :
OWASP Automated Threats
Open Web Application Security Project (OWASP) Open Web Application Security Project (OWASP) is an open community which covers all the
Secure Programming
ASSISTANCE IN SECURE PROGRAMMING The root cause of any kind of vulnerabilities in a web application is sprouting from the
Securing MySQL Server
One of the top OWASP issues is security mis-configuration. So as the case with MySQL and other Database servers are
Home
CYBER SECURITY, NETWORK SECURITY, WEB SECURITY COMPANY IN INDIA – PROPHAZE The most common Firewalls , Secure networks plays very