Newly added security tests, August 28, 2017: vBulletin and WordPress vulnerabilities

DetectifyAug 28, 2017

To help you keep up with the latest vulnerabilities, we add new security tests to Detectify on a regular basis. The latest additions to the tool cover everything from a vBulletin SQL injection to a DOM XSS in a WordPress.

Here are the new security tests that now run when you start a Detectify scan:

CVE-2016-6195 – Unauthenticated SQL Injection in VBulletin
PHP symfony debug toolbar disclosure
WordPress bridge-theme DOM XSS
Web Cache Deception updates

If you’d like to learn more about DOM XSS vulnerabilities, why not check out our write-up explaining how we invented the Tesla DOM DOOM XSS?

Detectify

Complete External Attack Surface Management for AppSec and ProdSec teams.

Check out more content

Product Updates

How Internal Scanning works: Q&A with Detectify’s product expert

Security doesn’t stop at the perimeter. The “inside” of your network often harbors many overlooked risks. To address this, ealier this year we launched Detectify Internal …

April 21, 2026

Product Updates

Introducing PCI ASV Scanning: Continuous attack surface compliance in partnership with Clone Systems

Maintaining a secure external attack surface is no longer just about finding vulnerabilities; it’s about proving your resilience to partners, auditors, and regulatory bodies. Today, …

April 15, 2026

Product Updates

Introducing GraphQL Support for API Scanning

Detectify’s new GraphQL API Scanning uses hacker-led research to provide highly accurate (99.7%), payload-based security testing. It identifies complex vulnerabilities, helping enterprises meet PCI DSS …

March 26, 2026

Product Updates

Introducing IP Range Scanning: continuous Surface Monitoring for your entire network

Most organizations share a common, uncomfortable secret: they can’t answer basic questions about what is actually exposed on their IP ranges. As companies grow, whether …

March 24, 2026