16 matches found
EUVD-2025-14310
Malicious code in bioql PyPI...
EUVD-2025-14309
Malicious code in bioql PyPI...
CVE-2024-56524
Radware Cloud Web Application Firewall WAF before 2025-05-07 allows remote attackers to bypass firewall filters by adding a special character to the request...
CVE-2024-56523
Radware Cloud Web Application Firewall WAF before 2025-05-07 allows remote attackers to bypass firewall filters by placing random data in the HTTP request body when using the HTTP GET method...
CVE-2024-56523
Radware Cloud Web Application Firewall WAF before 2025-05-07 allows remote attackers to bypass firewall filters by placing random data in the HTTP request body when using the HTTP GET method...
CVE-2024-56524
Radware Cloud Web Application Firewall WAF before 2025-05-07 allows remote attackers to bypass firewall filters by adding a special character to the request...
CVE-2024-56523
Radware Cloud Web Application Firewall WAF before 2025-05-07 allows remote attackers to bypass firewall filters by placing random data in the HTTP request body when using the HTTP GET method...
PT-2025-20699 · Radware · Radware Cloud Web Application Firewall
Name of the Vulnerable Software and Affected Versions: Radware Cloud Web Application Firewall WAF versions prior to 2025-05-07 Description: The issue allows remote attackers to bypass firewall filters by placing random data in the HTTP request body when using the HTTP GET method. Recommendations:...
CVE-2024-56523
Summary: CVE-2024-56523 affects Radware Cloud Web Application Firewall (WAF). The vulnerability allows remote attackers to bypass firewall filters by placing random data in the HTTP request body when using the HTTP GET method, potentially enabling malicious inputs to reach the underlying web appl...
CVE-2024-56524
Radware Cloud Web Application Firewall WAF before 2025-05-07 allows remote attackers to bypass firewall filters by adding a special character to the request...
PT-2025-20552 · Radware · Radware Cloud Web Application Firewall
Name of the Vulnerable Software and Affected Versions: Radware Cloud Web Application Firewall WAF versions before 2025-05-07 Description: The issue allows remote attackers to bypass firewall filters by adding a special character to the request. There is a proof-of-concept demonstration of the...
Radware Cloud Web Application Firewall Vulnerable to Filter Bypass
Overview The Radware Cloud Web Application Firewall is vulnerable to filter bypass by multiple means. The first is via specially crafted HTTP request and the second being insufficient validation of user-supplied input when processing a special character. An attacker with knowledge of these...
Imperva Protects Against Critical Apache OFBiz Vulnerability (CVE-2024-45195)
Recently, a critical vulnerability in the widely used Apache OFBiz framework was disclosed, designated CVE-2024-45195. This vulnerability allows for unauthenticated remote code execution RCE, making it an especially dangerous flaw for organizations using OFBiz in their business operations. An...
Imperva Ships API Security Providing Continuous API Discovery and Data Classification with Two Deployment Models
Every day, organizations are challenged to bring products to market faster and out innovate their competition. At the heart of many digital transformation initiatives are development teams looking for ways to achieve initiatives and deliver on new product goals. Many of these teams openly embrace...
Personalized Customer Support that Garners a Personalized Thank You
In my two-plus years as a Technical Support Engineer at Imperva, I’ve handled a wide variety of customer cases. And I’ve had the satisfaction of helping resolve them quickly and successfully. But never before have I received a handwritten thank you note from an effusive customer. Let me start at...
Addressing the Availability of the ACAEngine
In my experience as a Solutions Engineer, I've seen many companies strive for 100% uptime of enterprise applications. However, this is a goal that cannot happen by itself. Careful thought must be put into the underlying architecture that delivers these critical enterprise applications. Recently,...