Web Security

Name Status Update
A signature to prevent attackers from retrieving arbitrary files using directory traversal vulnerability in Liferay 5.1.0 (CVE-2016-6517).
Add
A signature to prevent attackers from uploading arbitrary files in Complaint Management System 4.0.
Add
A signature to prevent attackers from downloading arbitrary files using directory traversal vulnerability in piSignage (CVE-2019-20354).
Add
A signature to prevent attackers from downloading arbitrary files using directory traversal vulnerability in Voyager 1.3.0.
Add
A signature to prevent attackers from getting sensitive information by a direct request to AVE DOMINAplus.
Add
A signature to prevent attackers from executing arbitrary commands in Broadcom CA Privilged Access Manager (CVE-2018-9021, CVE-2018-9022).
Add
A signature to prevent attackers from performing Command Injection attacks using the "nc" command.
Mod
A signature to prevent attackers using sql query to get database information.
Mod
A signature to prevent attackers from executing external javascript source code of "href" attribute in tag.
Mod
A signature to prevent attackers from using phpinfo function in PHP.
Mod
A signature to prevent attackers from exploiting a Struts 2 Vulnerability by 'class' parameter.
Mod