Home / Companies / Detectify / Blog / Post Details
Content Deep Dive

Detectify security updates for 02 May

Blog post from Detectify

Post Details
Company
Date Published
Author
Detectify
Word Count
214
Company Posts That Month
4
Language
-
Hacker News Points
-
Post removed?
No
Summary

Detectify regularly updates its security tool every two weeks with new findings, features, and improvements from its security researchers and the Crowdsource ethical hacker community, although specific updates cannot always be publicized due to confidentiality agreements. Recently, the tool has been enhanced with tests for vulnerabilities reported by ethical hackers, including CVE-2019-3799, which involves a directory traversal vulnerability in Spring Cloud Config that allows attackers to read local files, and CVE-2018-19439, an XSS vulnerability in Oracle Secure Global Desktop due to improper escaping of GET-parameters. Additionally, CVE-2011-4367, another directory traversal issue in Apache MyFaces, has been addressed, along with an open redirect vulnerability in the Oracle Discoverer Viewer BI, where a GET-parameter value is used to create redirects. These updates have been integrated into the Detectify scanner to enhance its security coverage.

Trends Found in this Post

No tracked trend matches for this post yet.

Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.