Newly added security tests March 15, 2017: WordPress, Joomla and Drupal

DetectifyMar 15, 2017

To bring you the most up-to-date security service and help you stay on top of threats, we update Detectify on a regular basis. Here are some of the security tests added to the tool with our latest release:

testcgi.exe XSS
WordPress NextGEN SQL injection
WordPress soundcloud-is-gold XSS
WordPress userpro XSS
Joomla! com_news SQL injection
Joomla! com_publication SQL injection
Joomla! com_filecabinet SQL injection
Joomla! com_frontpage SQL injection
Joomla! com_webgrouper SQL injection
Joomla! com_phocadownload SQL injection
Joomla! com_jdownloads SQL injection
Drupal error_log disclosure
PHPSysInfo Open Access
SSH Private Key Exposure
myDBR XSS
Jobportals XSS

Detectify

Complete External Attack Surface Management for AppSec and ProdSec teams.

Check out more content

Product Updates

Introducing Dynamic API Scanning

Application environments are more complex than ever, with APIs forming the critical connective tissue. But this proliferation has created a vast, often invisible, attack surface. …

September 02, 2025

Product Updates

Redefining AppSec Testing with Intelligent Scan Recommendations and Asset Classification

The average organization is missing testing 9 out of 10 of their complex web apps that are attacker-attractive targets. To address this, we’re launching new …

April 24, 2025

Product Updates

Security Update: Publicly Exposed Ingress NGINX Admission

A series of vulnerabilities, known as IngressNightmare (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974), have been identified in ingress-nginx, a widely used Kubernetes ingress controller. When exploited together, …

March 26, 2025

Product Updates

Introducing Alfred for fully autonomous AI-built vulnerability assessments

We are excited to announce Detectify Alfred, a revolutionary system that uses AI to completely autonomously collect and prioritize threat intelligence and generate high-fidelity security …

March 10, 2025