Web Security

Name Status Update
A signature to prevent attackers from extracting sensitive information from Oracle databases by using system table "sys.v_$version".
Add
A signature to prevent attackers from executing arbitrary code in DEDECMS.
Add
A signature to prevent attackers from accessing potential Webshell located on the target webserver.
Add
A signature to prevent attackers from exploiting a Denial Of Service Vulnerability in Extreme Networks Aerohive HiveOS.
Add
A signature to prevent attackers from executing arbitrary code through deserialization vulnerability in Kentico CMS (CVE-2019-10068).
Add
A signature to prevent attackers from executing arbitrary code in IBM Data Risk Manager (CVE-2020-4428).
Add
A signature to prevent attackers from probing database information by SQL "waitfor delay" function.
Mod
A signature to prevent attackers from probing database information by SQL "waitfor time" function.
Mod