hello. This is MONITORAPP. We have conducted the first new hire training for 2025. The first quarter of 2025 new employee training was held from September 2024 to February 2025. We had 13 new employees from R&D, sales, management support, marketing, and technical support, and we Read more about MONITORAPP New Hire Training Q1 2025[…]
CVE-2024-4547 is a SQL injection vulnerability affecting Delta Electronics DIAEnergie v1.10.1.8610 and earlier. The issue lies in the CEBC.exe component that processes the ‘RecalculateScript’ message, which contains four fields separated by the ‘~’ character. An unauthenticated remote attacker could exploit this vulnerability by manipulating the fourth field to inject malicious SQL statements, which could lead Read more about [2025.02 Vulnerability Report] Delta Electronics DIAEnergie SQL Injection(CVE-2024-4547)[…]
The vulnerability is a pre-authentication RCE vulnerability in Apache OFBiz, which allows an attacker to execute malicious code without an authentication process by exploiting an incorrect authentication process when processing a request for a particular URL. The vulnerability was patched in version 18.12.15 of Apache OFBiz, and AIWAF responds through the 2228: Apache OFBiz Remote Read more about [2025.02 Vulnerability Report] Apache OFbiz Pre-Auth Remote Code Execution[…]
Weekly web attack trends Weekly web attack trends allow you to see when web attacks are most prevalent. This can help you plan ahead to prevent and respond to web attacks during peak periods. The graph below shows the web attacks detected by AIWAF as of Read more about [2025.01] Web Attack Trend Report[…]
Our first Compliment Relay interview of 2025 is with Heejin Jeong, who was nominated by Researcher Kyungmin Lee! 🎉 We’re excited to share her story with you! Let’s take a look at the story of Heejin Jung, who is always passionate about her work 😊. Q1. How Read more about Compliment Relay January 2025 by Heejin Jung, Manager of MONITORAPP[…]
Hello, this is MONITORAPP. At the end of January 2025, we held an event to explain the features and future direction of MONITORAPP products to our partner sales representatives in Daegu. In addition Read more about MONITORAPP Daegu Regional Partner Event[…]
The vulnerability is a pre-authenticated RCE vulnerability in Ivanti’s Connect Secure, Policy Secure, and ZTA Gateway products, which attempts to exploit Buffer Overflow during IF-T/TLS protocol communication. The vulnerability is patched in 22.7R2.5 for Ivanti Connect Secure and Ivanti ZTA Gateway products, and AIWAF is continuously monitoring related vulnerabilities. 1. Overview Ivanti’s Connect Secure, Policy Read more about [2025.01 Vulnerability Report] Ivanti Connect Secure & Policy Secure, ZTA Gateways Vulnerability[…]
The WordPress CleanTalk plugin currently has a serious authentication bypass vulnerability, identified as CVE-2024-10542 and CVE-2024-10781, which allows an unauthenticated attacker to bypass security measures and perform actions that would normally require valid authentication. In particular, an attacker could install and activate arbitrary plugins on a vulnerable site, potentially leading to remote code execution and Read more about [2025.01 Vulnerability Report] WordPress CleanTalk Plugin Authentication Bypass Vulnerability (CVE-2024-10542, CVE-2024-10781)[…]
Weekly web attack trends Weekly web attack trends allow you to see when web attacks are most prevalent. This can help you plan ahead to prevent and respond to web attacks during peak periods. The graph below shows the web attacks detected by AIWAF as of Read more about [2024.12] Web Attack Trend Report[…]
hello. This is MONITORAPP. We organize a monthly “Compliment Relay” to encourage each other’s hard work and achievements, and to create a better work environment. This time, we’d like to introduce you to our November and December 2024 kudos. First, let’s take a look Read more about Compliment Relay November, December 2024 of MONITORAPP[…]
