Lucene search
K

152 matches found

Imperva Blog
Imperva Blog
added 2018/05/02 5:41 p.m.14 views

Configuring Imperva SecureSphere for GDPR Compliance: Part One

Time is running out. 23 days until GDPR enforcement The GDPR effective date is less than a month away and, given the significant risk and potential costs associated with a failure to comply, organizational readiness efforts continue to mount. GDPR non-compliance penalties can be severe up to 79...

0.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/04/26 8:7 p.m.64 views

Drupalgeddon3: Third Critical Flaw Discovered

For the third time in the last 30 days, Drupal site owners are forced to patch their installations. As the Drupal team noted a few days ago, new versions of the Drupal CMS were released, to patch one more critical RCE vulnerability affecting Drupal 7 and 8 core. The vulnerability, code-named...

3.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/03/28 3:30 p.m.65 views

Making the Grade: Achieve SSL Labs A+ Grade with Imperva WAF

We all woke up to a new reality early last year. HTTPS adoption has reached the tipping point, meaning that more than half of web traffic is encrypted. The benefits of encrypting your traffic are obvious, right? It’s essentially about you securing data being transmitted by authenticating web...

6.4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/03/12 6:30 p.m.118 views

RDaaS Security: How to Apply Database Audit and Monitoring Controls

As you move databases to cloud database platforms, data security and compliance requirements move along with it. This article explains how you can apply database audit and monitoring controls when migrating your database to cloud services, including the following: Introduction to RDaaS Benefits o...

7.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/01/25 4:15 p.m.28 views

Improve the ROI of Your Database Protection Investment

When an organization considers switching a mission-critical compliance or security system from one vendor’s solution to another it’s a very big decision. There is expense involved in acquiring the new solution, it will take time and money to deploy and retrain staff, and it will take careful...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/12/04 7:2 p.m.14 views

Database Security at Cloud Scale

The biggest challenge to data security is the sheer volume and pace of data growth. More so even than the shift from relational data to unstructured or the migration of data to the cloud. “Cloud scale” is usually used to refer to technical items like data center size and operations or networks an...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/10/24 11:0 a.m.35 views

Protecting Xero’s Cloud-Based Accounting Platform from Cyber Attacks

Meeting with customers is always insightful, and recently I got a chance to sit down with Aaron McKeown, head of security engineering and architecture at Xero, to talk about how they use Imperva SecureSphere for their cloud-hosted applications. Founded in 2006, Xero provides cloud accounting...

7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/10/18 3:30 p.m.75 views

Tuning Capacity Tips for SecureSphere Database Activity Monitoring

You have Imperva SecureSphere Database Activity Monitoring DAM up and running. You’ve deployed the system and configured your business audit policies. So, what’s next? In a previous post I discussed the capacity management challenges of database monitoring solutions, in this post I’ll elaborate o...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/10/09 3:30 p.m.49 views

How to Protect AWS ECS with SecureSphere WAF

Adoption of container technology is growing widely. More and more workloads are being transferred from traditional EC2 compute instances to container-based services. However, the need for securing the web traffic remains the same regardless of the elected platform. In this post, we’ll deep dive...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/09/20 3:30 p.m.29 views

How to Deploy SecureSphere WAF on Azure

If you host apps in the cloud, then you need security in the cloud. The Imperva SecureSphere Web Application Firewall WAF identifies and acts upon dangers maliciously woven into innocent-looking website traffic, both on-premises and in the cloud, such as: Blocking technical attacks such as SQL...

7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/08/15 3:30 p.m.153 views

How to Protect AWS API Gateway with SecureSphere WAF

Serverless architectures are becoming more and more popular, and Amazon’s API Gateway service is a key factor in many serverless deployments on AWS. Currently API Gateway only supports a public CloudFront endpoint, and securing the API Gateway with high-end WAF protection may seem like a difficul...

6.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/07/27 4:53 p.m.20 views

How to Secure AWS Deployments with SecureSphere WAF

The Imperva SecureSphere Web Application Firewall WAF analyzes all user access to business-critical web applications and protects your applications and data from cyberattacks. SecureSphere WAF dynamically learns an applications’ “normal” behavior and correlates it with crowd-sourced threat...

6.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/05/25 3:26 p.m.29 views

Protect Against WannaCry with Deception-Based Ransomware Detection

The WannaCry ransomware attack caught the world off guard—and may have even literally left some crying. The attack infected more than 230,000 computers in 150 countries by encrypting data on networked machines and demanding payments in Bitcoin. According to Malwarebytes researchers, the attack...

7AI score
Exploits0
NVD
NVD
added 2014/09/11 2:16 p.m.15 views

CVE-2011-4887

Cross-site scripting XSS vulnerability in the Violations Table in the management GUI in the MX Management Server in Imperva SecureSphere Web Application Firewall WAF 9.0 allows remote attackers to inject arbitrary web script or HTML via the username field...

4.3CVSS5.7AI score0.01284EPSS
Exploits0References6
Prion
Prion
added 2014/09/11 2:16 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Violations Table in the management GUI in the MX Management Server in Imperva SecureSphere Web Application Firewall WAF 9.0 allows remote attackers to inject arbitrary web script or HTML via the username field...

4.3CVSS6.1AI score0.01284EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2014/09/11 2:0 p.m.51 views

CVE-2011-4887

The CVE-2011-4887 entry covers an XSS vulnerability in the MX Management Server’s management GUI (Violations Table) of Imperva SecureSphere Web Application Firewall 9.0. The issue stems from input handling in the username field, allowing remote attackers to inject arbitrary web script or HTML. Do...

4.3CVSS5.9AI score0.01284EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2014/09/11 2:0 p.m.25 views

CVE-2011-4887

Cross-site scripting XSS vulnerability in the Violations Table in the management GUI in the MX Management Server in Imperva SecureSphere Web Application Firewall WAF 9.0 allows remote attackers to inject arbitrary web script or HTML via the username field...

5.7AI score0.01284EPSS
Exploits0References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Imperva SecureSphere Web Application Firewall MX 9.5.6 - Blind SQL Injection

No description provided by source. Blind SQL Injection to Imperva SecureSphere Web Application Firewall MX ======================================================================= ADVISORY INFORMATION Title: Blind SQL Injection on Imperva SecureSphere Web Application Firewall MX Discovery date:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Imperva SecureSphere 5.0 - Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28279/info Imperva SecureSphere is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilities

No description provided by source. Original: http://www.digitalsec.net/stuff/explt+advs/Imperva-SecureSphere.OptMgr.txt =============================== - Advisory - =============================== Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issu...

7.1AI score
Exploits0
Rows per page
Query Builder