Web Security

Name Status
A signature to prevent attackers from injecting malicious PHP code using "file_put_contents()" function.
New
A signature to prevent attackers from injecting arbitrary OS commands in NetGain Enterprise Manager.
New
A signature to prevent attackers from uploading files in VehicleWorkshop.
New
A signature to prevent attackers from downloading files in Advantech SUSIAccess (CVE-2016-9349).
New
A signature to prevent attackers from performing SSRF attack in phpBB.
New
A signature to prevent attackers from injecting arbitrary OS commands in Ubiquiti Networks UniFi Cloud Key Firmware.
New
A signature to prevent attackers from executing arbitrary code via serialized data in an XML file in Jenkins (CVE-2016-0792).
New
List of Seznam crawler IP addresses.
New
A signature to prevent attackers from getting source code by a direct request for /showcode.asp in WEB-IIS.
Enhanced