Web Security

Name Status Update
A signature to prevent attackers from uploading arbitrary files in BlogEngine.NET.
New
A signature to prevent attackers from downloading arbitrary files using directory traversal vulnerability in Sahi pro (CVE-2018-20470).
New
A signature to prevent attackers from executing arbitrary code through deserialization vulnerability in Sitecore 8.x (CVE-2019-11080).
New
A signature to prevent attackers from uploading arbitrary files in AROX School ERP Pro.
New
A signature to prevent attackers from uploading arbitrary files in Cisco Prime Infrastructure Health Monitor (CVE-2019-1821).
New
A signature to prevent attackers from executing arbitrary commands in Webmin (CVE-2019-12840).
New
A signature to prevent attackers from exploiting a Denial Of Service Vulnerability in Lighttpd (CVE-2019-11072).
New
A signature to prevent attackers from bypassing the access controls configured in Apache Tomcat JK Connector (CVE-2018-11759).
New
A signature to prevent attackers from resetting arbitrary user passwords in Mantis Bug Tracker (CVE-2017-7615).
New
A signature to prevent attackers from bypassing the access controls configured in SonicWall Multiple Products (CVE-2013-1359).
New
A signature to prevent attackers from exploiting a Denial of Service Vulnerability in IIS w3who.dll ISAPI (CVE-2004-1134).
New
A signature to prevent attackers from exploiting a Denial of Service Vulnerability in BadBlue Ext.dll (CVE-2005-0595).
New
A signature to prevent attackers from executing arbitrary commands in ESF pfSense.
New
A signature to prevent attackers from executing cross-site request forgery in Easy Hosting Control Panel (CVE-2018-6458).
New
A signature to prevent attackers from guessing the secret token to execute arbitrary code in Ruby on Rails (CVE-2019-5420).
New
A signature to prevent attackers from executing arbitrary commands in Rocket Servergraph Admin Center (CVE-2014-3915).
New
A signature to prevent attackers from executing arbitrary commands in Graphite Web (CVE-2013-5093).
New
A signature to prevent attackers from exploiting a Denial of Service Vulnerability in HP Openview Network Node Manager (CVE-2008-4562).
New
A signature to prevent attackers from accessing Dahua IP Camera authentication file (CVE-2017-6343).
New
A signature to prevent attackers from uploading arbitrary files in Novell Zenworks Configuration Management (CVE-2015-0781).
New
A signature to prevent attackers from exploiting a Denial of Service Vulnerability in PHP php_quot_print_encode parameter parsing (CVE-2013-2110).
New
A signature to prevent attackers from exploiting a Denial Of Service Vulnerability in Nagios (CVE-2013-7108).
New
A signature to prevent attackers from executing arbitrary commands in Cogent Real-Time Systems (CVE-2014-3789).
New
A signature to prevent attackers from bypassing authentication and obtaining sensitive information in OpenEMR (CVE-2015-4453).
Enhanced
A signature to prevent attackers from exploiting WordPress XMLRPC service by sending a large size of payload, which attempt to crash PHP involved with vulnerable glibc function 'gethostbyname()'.
Enhanced
A signature to prevent attackers from injecting arbitrary OS commands in Zyxel EMG2926 (CVE-2017-6884).
Enhanced