Drk1Wi

**Name of the Vulnerable Software and Affected Versions** Imperva SecureSphere Web Application Firewall (WAF) versions prior to 12-august-2010 **Description** The issue allows SQL injection filter bypass. **Recommendations** For versions prior to 12-august-2010, update to a version released after 12-august-2010 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** McAfee SuperScan version 4.0 **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded sequences in a server response. This is due to improper handling in the SuperScan HTML report. **Recommendations** For McAfee SuperScan version 4.0, update to a version that properly handles UTF-7 encoded sequences in server responses to prevent cross-site scripting attacks.