Newly added security tests May 11, 2017: CGIemail

DetectifyMay 11, 2017

To bring you the most up-to-date security service and help you stay on top of threats, we update Detectify on a regular basis. Here are some of the latest security tests added to the tool:

CVE-2017-5614 cgiemail open redirect
CVE-2017-5615 cgiemail http response splitting
CVE-2017-5616 cgiemail reflected xss
CVE-2017-8295 WordPress Unauthorized Password Reset
CVE-2016-10033 WordPress RCE
WordPress tracking-code-manager XSS
WordPress download-monitor Unauthenticated Log Download
WordPress plugin-organizer CSRF
WordPress clean-login CSRF

Detectify

Complete External Attack Surface Management for AppSec and ProdSec teams.

Check out more content

Product Updates

Introducing Dynamic API Scanning

Application environments are more complex than ever, with APIs forming the critical connective tissue. But this proliferation has created a vast, often invisible, attack surface. …

September 02, 2025

Product Updates

Redefining AppSec Testing with Intelligent Scan Recommendations and Asset Classification

The average organization is missing testing 9 out of 10 of their complex web apps that are attacker-attractive targets. To address this, we’re launching new …

April 24, 2025

Product Updates

Security Update: Publicly Exposed Ingress NGINX Admission

A series of vulnerabilities, known as IngressNightmare (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974), have been identified in ingress-nginx, a widely used Kubernetes ingress controller. When exploited together, …

March 26, 2025

Product Updates

Introducing Alfred for fully autonomous AI-built vulnerability assessments

We are excited to announce Detectify Alfred, a revolutionary system that uses AI to completely autonomously collect and prioritize threat intelligence and generate high-fidelity security …

March 10, 2025