Home / Companies / Detectify / Blog / Post Details
Content Deep Dive

Detectify security updates for 13 July

Blog post from Detectify

Post Details
Company
Date Published
Author
Detectify
Word Count
383
Company Posts That Month
4
Language
-
Hacker News Points
-
Post removed?
No
Summary

Detectify releases major security updates every two weeks, incorporating new findings and enhancements from its security researchers and a community of ethical hackers. While not all updates can be disclosed due to confidentiality agreements, they are promptly integrated into the scanner for user access. Recent improvements include addressing CVE-2020-13662, an open redirect vulnerability in Drupal, CVE-2020-9757, a server-side template injection in Craft CMS's SEOmatic component, and CVE-2020-5902, vulnerabilities within the F5 BIG-IP's Traffic Management User Interface that permit arbitrary command execution and local file reading. Additionally, CVE-2020-4038, a cross-site scripting vulnerability in the Prisma GraphQL Playground IDE, is covered, alongside a browser cache SOP bypass vulnerability which could expose sensitive user information on sites with misconfigured CORS policies. Users are encouraged to begin scanning for these vulnerabilities and can start a free trial or log in to check their assets.

Trends Found in this Post

No tracked trend matches for this post yet.

Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.