Database Security

Authentication

Privacy

Compliance

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

Network Computing Dark Reading

Advertise

About Us

Author

Profile of Carl Herberger

VP, Security Solutions, Radware

News & Commentary Posts: 2

Carl is an IT security expert and currently manages Radware's security practice in the Americas. With over a decade of experience, he began his career working at the Pentagon evaluating computer security events affecting daily Air Force operations. Carl also managed critical operational intelligence for computer network attack programs to aid the National Security Council and Secretary of the Air Force with policy and budgetary defense. Carl writes about network security strategy, trends, and implementation.

Articles by Carl Herberger

View Content By Month

The Lizard Squad: Cyber Weapon or Business?

12/10/2015
Even a hacker with the noblest intentions can run afoul of the law by not following six important do’s and don’ts.
Post a Comment

The Dawn of Lights-Out Security

10/30/2015
In the future, the role of humans will focus on the architecture, design and automation of security, not in the actual testing or operational management.
Post a Comment

Hot Topics

Editors' Choice

Microsoft, Mastercard Aim to Change Identity Management

Kelly Sheridan, Staff Editor, Dark Reading, 12/3/2018

Windows 10 Security Questions Prove Easy for Attackers to Exploit

Kelly Sheridan, Staff Editor, Dark Reading, 12/5/2018

Starwood Breach Reaction Focuses on 4-Year Dwell

Curtis Franklin Jr., Senior Editor at Dark Reading, 12/5/2018

Live Events

Webinars

More UBM Tech
Live Events

Enterprise Connect 2019 - Build Your Comms & Collaboration Future

Communications & Collaboration 2022 at EC19 Orlando March 18-21

White Papers

TitaniumCloud File Intelligence vs. VirusTotal

How to Build an Effective Threat Hunting Program

Outsmart Malware

Frost & Sullivan Report: SOC-as-a-Service Versus DIY SOC

Get Smarter, Be Safer With VirusTotal Enterprise

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: I guess this answers the question: who's watching the watchers?

Cartoon Archive

Current Issue

10 Best Practices That Could Reshape Your IT Security Department

This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises Are Using IT Threat Intelligence

Large organizations are harnessing data about cyberattackers and their exploits to improve the safety of their critical data. Find out what they're doing.

Download Now!

How Enterprises Are Attacking the Cybersecurity Problem

0 comments

Online Malware and Threats: A Profile of Today's Security Posture

0 comments

The Risk Management Struggle

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-20009
PUBLISHED: 2018-12-10

DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider.php SSL Provider Name or SSL Provider URL field.

CVE-2018-20010
PUBLISHED: 2018-12-10

DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field.

CVE-2018-20011
PUBLISHED: 2018-12-10

DomainMOD 4.11.01 has XSS via the assets/add/category.php Category Name or Stakeholder field.

CVE-2018-20012
PUBLISHED: 2018-12-10

PHPCMF 4.1.3 has XSS via the first input field to the index.php?s=member&c=register&m=index URI.

CVE-2018-20015
PUBLISHED: 2018-12-10

YzmCMS v5.2 has admin/role/add.html CSRF.

Terms of Service
Privacy Statement
Legal Entities

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]