Indusface Blog

September 24, 2024

Pavithra Hanchagaiah

3 min Read

Learn about CVE-2024-8190, an OS command injection vulnerability in Ivanti CSA. Discover how it allows remote code execution and ways to protect your system.

September 13, 2024

Pavithra Hanchagaiah

3 min Read

A command injection flaw (CVE-2024-27348) in SPIP allows remote attacks without authentication. Learn mitigation steps & how AppTrana provides Day 0 protection.

September 13, 2024

Vinugayathri Chinnasamy

5 min Read

Uncover top vulnerability management challenges & where organizations go wrong in addressing security gaps. Learn effective strategies to overcome these issues.

August 30, 2024

Vinugayathri Chinnasamy

5 min Read

Understand how to determine the perfect frequency for vulnerability scans. Protect critical systems, manage risks, and maintain compliance effectively.

August 30, 2024

Vinugayathri Chinnasamy

5 min Read

Understand the OWASP Top 10 Client-Side Risks, common vulnerabilities in client-side code, and practical strategies to mitigate these threats effectively.

August 26, 2024

Vinugayathri Chinnasamy

4 min Read

Discover Formjacking attacks, their impact on businesses, effective prevention strategies, and PCI DSS 4.0 requirements for client-side security compliance.

August 23, 2024

Vinugayathri Chinnasamy

6 min Read

What is a Magecart Attack? Magecart attacks are a form of digital skimming that targets insecure websites to steal payment information. These attacks involve injecting malicious JavaScript code into e-commerce.

August 22, 2024

Venkatesh Sundar

5 min Read

8 common types of cyberattacks a WAF is designed to stop. Indusface WAF allows custom rules, prevents business logic flaws, assures zero false positives.

August 14, 2024

Pavan Bushan Reddy

5 min Read

A new zero-day vulnerability, CVE-2024-38856, has been discovered in the Apache OFBiz open-source enterprise resource planning (ERP) platform, presenting a critical threat to businesses worldwide. This pre-authentication remote code execution.

August 1, 2024

Pavan Bushan Reddy

3 min Read

Hotjar’s OAuth+XSS flaw risks millions. Attackers exploit this vulnerability with deceptive links, exposing user data and leading to potential takeovers.

August 1, 2024

Mohammed Ansari

4 min Read

Discover critical ServiceNow vulnerabilities CVE-2024-4879 & CVE-2024-5217, exposing systems to remote code execution. Learn about risks & mitigation measures.

July 31, 2024

Vinugayathri Chinnasamy

9 min Read

Check out the checklist of 154 test cases for comprehensive penetration testing of Android applications and verify that they don’t have any security loopholes.