Detectify security updates for 13 July
Blog post from Detectify
Detectify releases major security updates every two weeks, incorporating new findings and enhancements from its security researchers and a community of ethical hackers. While not all updates can be disclosed due to confidentiality agreements, they are promptly integrated into the scanner for user access. Recent improvements include addressing CVE-2020-13662, an open redirect vulnerability in Drupal, CVE-2020-9757, a server-side template injection in Craft CMS's SEOmatic component, and CVE-2020-5902, vulnerabilities within the F5 BIG-IP's Traffic Management User Interface that permit arbitrary command execution and local file reading. Additionally, CVE-2020-4038, a cross-site scripting vulnerability in the Prisma GraphQL Playground IDE, is covered, alongside a browser cache SOP bypass vulnerability which could expose sensitive user information on sites with misconfigured CORS policies. Users are encouraged to begin scanning for these vulnerabilities and can start a free trial or log in to check their assets.
No tracked trend matches for this post yet.
Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.