Web Security

Name Status Update
A Signature to prevent attackers from executing arbitrary code in Drupal Core (CVE-2018-7602).
New
Signatures to prevent attackers from obtaining the physical path from an error message using a crafted request in Cobub Razor 0.8.0 (CVE-2018-8056, CVE-2018-8770).
New
A signature to prevent attacks from executing arbitrary code via a serialized .NET object in an Authorization HTTP header in CyberArk Password Vault Web Access (CVE-2018-9843).
New
A signature to prevent attacks from executing arbitrary code through a serialized Java object to the Jenkins CLI (CVE-2017-1000353).
New
A signature to prevent attackers from injecting arbitrary OS commands in PfSense (CVE-2014-4688).
New
A signature to prevent attackers from causing a buffer overflow attack in Easy File Sharing Web Server 7.2 (CVE-2018-9059).
New
A signature to prevent attackers from deleting arbitrary file using directory traversal vulnerability in WordPress Plugin Woo Import Export.
New