CVE-2022-46764 : TRUECONF SERVER 5.2.0.10225 SQL INJECTION
Description A SQL injection issue in the web API in TrueConf Server 5.2.0.10225 allows remote unauthenticated attackers to execute arbitrary
SQL Injection Prevention
SQL Injection Prevention Prophaze WAF deployed wide range of methods into its core algorithm to block generic and advanced SQL
Online Bus Ticket Reservation 1.0 – SQL Injection
Overview : Online Bus Ticket Reservation 1.0 – SQL Injection Affected Product(s) : Version: 1.0 Vulnerability Details : CVE ID
SQL injection vulnerability was discovered in Micro Focus Service Manager Automation (SMA)
[vc_row][vc_column][vc_column_text] Overview : An SQL injection vulnerability was discovered in Micro Focus Service Manager Automation (SMA), affecting versions 2019.08, 2019.05,
LogicalDoc before 8.3.3 allows SQL Injection
[vc_row][vc_column][vc_column_text] Overview : LogicalDoc before 8.3.3 allows SQL Injection. LogicalDoc populates the list of available documents by querying the database.
Accentis Content Resource Management System suffer from a remote SQL injection vulnerability.
Overview : Accentis Content Resource Management System versions released prior to the October 2015 patch suffer from a remote SQL
SQL injection vulnerability in Terrasoft Bpm’online CRM
Overview : A SQL injection vulnerability in the method Terrasoft.Core.DB.Column.Const() in Terrasoft Bpm’online CRM-System SDK 7.13 permits attackers to execute
Most Common Cyber Attacks You Must Be Aware of
Cyber attacks are one of the fastest-growing crimes in the cyber world. Cyberspace has become a major force in today’s
What Types Of Attacks Can A WAF Protect Against?
What Types Of Attacks Can A WAF Protect Against? Discover the powerful protection offered by a Web Application Firewall (WAF)
What Is XML External Entity Injection? How To Prevent XXE Attacks?
Have you ever wondered how important XML is? And how insecure it can be if XML is parsed in an
What Is Remote Code Execution? How Does It works?
What Is Remote Code Execution? Remote Code Execution or RCE, also known as arbitrary code execution is a network vulnerability
Injection Prevention
Injection Prevention What is Prophaze WAF? How Prophaze WAF Works System Requirements Performance SSL Termination Modes Of Operation Prophaze WAF
Vulnerabilities Discovered in CIPAce Enterprise Platform
Overview : A Directory Traversal issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make HTTP
unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by uploading a file with an executable extension.
Overview : An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by
cPanel before 84.0.20 allows a demo account to achieve remote code execution
Overview : cPanel before 84.0.20 allows a demo account to achieve remote code execution via a cpsrvd rsync shell (SEC-544).
Cisco announces vulnerabilities
Overview : Cisco Firepower Management Center Remote Code Execution Vulnerability CWE-20 / CVE-2019-12689 A vulnerability in the web-based management interface