Introducing GraphQL Support for API Scanning
Detectify’s new GraphQL API Scanning uses hacker-led research to provide highly accurate (99.7%), payload-based security testing. It identifies complex vulnerabilities, helping enterprises meet PCI DSS …
Newly added security tests March 23, 2017: CVE-2017-5638 and Joomla SQL injections
Detectify
To bring you the most up-to-date security service and help you stay on top of threats, we update Detectify on a regular basis. Here are some of the security tests added to the tool with our latest release:
- CVE-2017-5638, Apache Struts RCE
- WordPress error log disclosure
- WordPress wp-rich-snippet XSS
- WordPress all-in-one-schemaorg-rich-snippets XSS
- WordPress apptha-slider-gallery XSS
- WordPress apptha-slider-gallery SQL injection
- WordPress backup-with-restore Database Disclosure
- WordPress wp-database-backup RCE
- Joomla! vikappointments SQL injection
- Joomla! vikrentitems SQL injection
- Joomla! vikrentcar SQL injection
- Joomla! simplemembership SQL injection
- CKEditor wiris plugin XSS
- AWS S3CMD header information disclosure
- Concerto fingerprinting and XSS module
- Publicly exposed Lynk Zipper
Check out more content
Introducing IP Range Scanning: continuous Surface Monitoring for your entire network
Most organizations share a common, uncomfortable secret: they can’t answer basic questions about what is actually exposed on their IP ranges. As companies grow, whether …
