Test Blog - Cloud WAF

CVE-2024-6345 : PYPA SETUPTOOLS UP TO 69.1.1 PACKAGE_INDEX CODE INJECTION

Description A vulnerability in the package_index module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which…

Common Vulnerabilities and Exposures

CVE-2024-39736 : IBM DATACAP NAVIGATOR 9.1.5/9.1.6/9.1.7/9.1.8/9.1.9 HTTP HEADER HOST HTTP HEADERS FOR SCRIPTING SYNTAX

Description IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST…

Common Vulnerabilities and Exposures

CVE-2023-52885 : LINUX KERNEL UP TO 6.4.3 SUNRPC SVC_TCP_LISTEN_DATA_READY USE AFTER FREE

Description In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() After the listener svc_sock is freed, and before invoking…

Learning Web Application Firewall

What Is Bots as a Service (BaaS) and How Does It Impact?

Automation is key to business efficiency and security in today’s rapidly evolving digital environment. An exciting development in this area is Bots as a Service…

Common Vulnerabilities and Exposures

CVE-2024-39565 : JUNIPER NETWORKS JUNOS OS UP TO 23.4R1-S1J-WEB XPATH INJECTION

Description An Improper Neutralization of Data within XPath Expressions ('XPath Injection') vulnerability in J-Web shipped with Juniper Networks Junos OS allows an unauthenticated, network-based attacker…

Common Vulnerabilities and Exposures

CVE-2024-6624 : JSON API USER PLUGIN UP TO 3.9.3 ON WORDPRESS REMOTE CODE EXECUTION

Description The JSON API User plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.9.3. This is due to…