Cyber Security
Security researchers have developed a technique that prevents web application firewalls (WAFs) from detecting SQL injection attacks. Several leading vendors’ WAFs failed to support JSON syntax...
Hi, what are you looking for?
Security researchers have developed a technique that prevents web application firewalls (WAFs) from detecting SQL injection attacks. Several leading vendors’ WAFs failed to support JSON syntax...
Security researchers from Varonis have published details of SQL injection and logical access vulnerabilities in Zendesk Explore that posed a severe threat for users of the...
A researcher at security firm Cyllective has unearthed vulnerabilities in dozens of WordPress plugins, affecting tens of thousands of installations. Dave Miller, who leads...
Rapid7 has patched a critical SQL injection vulnerability in Nexpose, its on-premises vulnerability management software. The flaw, which has a CVSS rating of 9.8, arose because...
Vulnerabilities in ImpressCMS could allow an unauthenticated attacker to bypass the software’s SQL injection protections to achieve remote code execution (RCE), a security researcher...
Sophos has resolved a severe vulnerability in the software running on its all-in-one Universal Threat Management (UTM) appliances. A post-authentication SQL injection vulnerability in the Mail Manager component...
A security vulnerability in e-learning platform Moodle could allow an attacker to take over a database and potentially obtain sensitive information, researchers have warned....
WP Statistics, a popular web analytics plugin for WordPress, contained a time-based blind SQL injection vulnerability that, if exploited, could result in sensitive information being exfiltrated...
A severe unauthenticated SQL injection vulnerability has been patched by developers of the Evolution CMS. Evolution is a PHP-based, open source content management system (CMS) used...
The German armed forces (‘Bundeswehr’) has reported a promising start to its recently launched vulnerability disclosure program (VDPBw). Despite the absence of paid bug...
Recent Comments