CVE-2026-56690: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Dell PowerFlex Manager
Dell PowerFlex Manager versions prior to 5.1.0.1 contain an SQL Injection vulnerability (CWE-89). This vulnerability allows a low privileged attacker with remote access to potentially execute…
Read the full articleYou might also wanna read

WAF - WAF Release - 2026-06-15
This week's release introduces new managed protection to address a critical SQL injection vulnerability in Ghost CMS (CVE-2026-26980) and a
Critical Redis Vulnerability (CVE-2025-49844) Allows Remote Code Execution with Maximum CVSS Score
Wiz Research discovers vulnerability stemming from 13-year-old bug present in all Redis versions, used in 75% of cloud environments.

WAF - WAF Release - 2026-06-09
This release introduces new detections for a critical SQL injection vulnerability in Drupal installations utilizing PostgreSQL (CVE-2026-908

WAF - WAF Release - 2025-10-06
This week’s highlights prioritise an emergency Oracle E-Business Suite RCE rule deployed to block active, high-impact exploitation. Also add
CISA Flags Actively Exploited Lantronix EDS5000 Vulnerability Allowing Root-Level OS Command Injection
CVE-2025-67038 targets Lantronix EDS5000 serial-to-IP device servers used to remotely connect to and manage serial devices. An unauthenticat
Critical Redis Security Vulnerability CVE-2025-49844 Allows Remote Code Execution
Developers love Redis. Unlock the full potential of the Redis database with Redis Enterprise and start building blazing fast apps.

Comments
Sign in to join the conversation.
No comments yet. Be the first.