Vulnerability Report of December 2024

Vulnerability Report of January 2025

CVE-2025-24813 - Apache Tomcat Vulnerability Under Active Exploitation 

Configure Custom Error & Maintenance Page

CVE-2025-54253: Critical Zero-Day Vulnerability in Adobe Experience Manager Forms

WAF  Automated Bypass and Unbypass

AppTrana API Protection - OWASP Top 10 of 2019

API Scan Coverage for OWASP Top 10

OWASP API Security Top 10 2023 – AppTrana API Protection

API Request to Blacklist IPs

Summary

WAF Status

Core and Custom Rules

Origin Server Address

Origin Health Check Mechanism

CVE-2017-12637: Exploitation of SAP NetWeaver Directory Traversal Vulnerability 

Password Management

Manage  Vulnerabilities

Manage Bandwidth

SSL Details

DNS Management

Vulnerability Report of January 2024

AppTrana Dashboard

Discover APIs

Vulnerability Report of February 2024

ASN Based IP Whitelisting

Malware Scanning for File Uploads

Vulnerability Report of March 2024

Vulnerability Report of October 2024

Behavioral DDoS Protection

Vulnerability Report of April 2024

Onboarding to AppTrana

Onboard into Indusface WAS

AppTrana Protection WAF Rules Coverage

Whitelist Vulnerabilities

Hotjar's OAuth+XSS Flaw Exposes Millions at Risk of Account Takeover

Critical Apache OFBiz Zero-day AuthBiz (CVE-2023-49070 and CVE-2023-51467)

CVE-2024-4879 & CVE-2024-5217 Exposed - The Risks of RCE in ServiceNow

ScreenConnect Authentication Bypass (CVE-2024-1709 & CVE-2024-1708)

CVE-2024-4577 – A PHP CGI Argument Injection Vulnerability in Windows Servers

CVE-2024-8517 – Unauthenticated Remote Code Execution in SPIP

CVE-2024-1071 – Critical Vulnerability in Ultimate Member WordPress Plugin

Cryptocurrency Mining Attack Exploiting PHP Vulnerabilities: An Emerging Threat

Zero-Day Reports

SwyftComply for Auto Scan & Manual Pentest

SwyftComply for API Scan

False Positive Analysis Report

Manage Email Alerts

Licenses & Utilization

Manage Groups

Vulnerability Report of May 2024

Discover Assets

Protection Status

Vulnerability Report of June 2024

Manage Attacks

Application Details

Access Logs

Attack Logs

Event Logs

Indusface WAS Scanned Vulnerabilities

Malware Monitoring

Application Audit

Vulnerability Assessment

Dashboard

API Security Audit

Asset Monitoring

Reports

Vulnerability Report of July 2024

Settings

WAS Defacement Checks

AcuRisQ – Risk Management with Advanced Risk Scoring

WAS Consulting License

API Key Based - Scan Log Export

SIEM Integration with Sumo Logic

CVE-2024-8190 – OS Command Injection in Ivanti CSA

Apache Struts 2 Vulnerability CVE-2023-50164 Exposed

CVE-2024-9264 - Grafana’s SQL Expressions Vulnerability

HTTP/2 Rapid Reset Attack Vulnerability

Comparison between Old Portal and New Portal

Jenkins Security Scan

Overview

Vulnerability Report of August 2024

Vulnerability Report of November 2024

Vulnerability Report of September 2024

Actions

Update Origin Server Address through API Call

Vulnerability Report of April 2023

Vulnerability Report of May 2023

Vulnerability Report of January 2023

Vulnerability Report of February 2023

Vulnerability Report of March 2023

Vulnerability Report of June 2023

Vulnerability Report of July 2023

Vulnerability Report of August 2023

Vulnerability Report of September 2023

Vulnerability Report of October 2023

Vulnerability Report of November 2023

Vulnerability Report of December 2023

Vulnerability Report of January 2022

Enhances application security by addressing traditional limitations. Explore our user guides for a detailed, step-by-step overview of its powerful features and implementation.

AppTrana  

Applications & Groups

Manage Assets

WAAP Policies

Vulnerabilities

Attacks

Bandwidth

Logs & Reports

License & Utilizatiion

Profile

Others

WAS scans web applications to detect vulnerabilities and security threats. Refer to our user guide for detailed features and insights.

Indusface WAS

Getting Started

MSSP WAS helps service providers secure client web applications and APIs by detecting vulnerabilities and threats. This user guide covers key features, setup, and usage to help you get started quickly.

Indusface WAS MSSP

The Summary page displays an overview of the security posture of applications and APIs based on the scans performed. 

The Dashboard gives MSSPs a consolidated, real-time view of customer application security posture across all managed sites.   

The Application Scan Tab provides a centralized interface to monitor, manage, and report application vulnerabilities. 

Application Scan

The API Security Audit Tab provides a centralized interface to monitor, manage, and report API vulnerabilities. 

The Reports tab allows you to view and manage all existing reports. Each report is listed with its Name, Description, and available Actions 

The Settings Menu in the Indusface WAS MSSP Client portal allows you to configure and manage various aspects of your customers’ vulnerability management programs. 

Discover OWASP Top 10 categories, evaluate WAF rule coverage, analyze WAS-scanned vulnerabilities, and explore additional security insights to strengthen your application protection.

Additional Resources

Zero-day vulnerability reports provide critical insights into newly discovered security flaws, their potential impact, and recommended mitigation strategies to protect against emerging threats.

Zero-Day Vulnerability Reports

Vulnerabilities Identified in 2020

Vulnerabilities Identified in 2021

Vulnerabilities Identified in 2022

Vulnerabilities Identified in 2023

Vulnerabilities Identified in 2024

Vulnerabilities Identified in 2025

Stay informed on security threats, vulnerabilities, and OWASP Top 10 risks with insights and mitigation strategies to protect your applications.

Security Bulletins

Vulnerabilities 2024

Vulnerabilities 2025

Other Vulnerabilities

FAQs

AppTrana

This section details Partner APIs, enabling customers to use API calls for seamless actions, ensuring efficient integration, automation, and improved security management.

AppTrana API Integration

Release Notes

AppTrana 

Indusface

Was this helpful?

You recently requested to reset your password for your account. Use the button below to reset it. This password reset is only valid for the next 24 hours.

If you’re having trouble with the button above, copy and paste the URL below into your web browser.

Please check your email for instructions to reset your password.

Check your email

Enter your email address and we will send you instructions to reset your password.

Please enter a new password below.

Set your password

Welcome to Indusface Product Documentation