Lucene search
K

52 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.35 views

threedify designer 5.0.2 - Multiple Vulnerabilities

No description provided by source. ========================================= Vulnerability ID: HTB23021 Reference: http://www.htbridge.ch/advisory/threedifydesigneractivexcontrolinsecuremethod.html Product: ThreeDify Designer Vendor: ThreeDify http://www.threedify.com Vulnerable Version: 5.0.2 an...

6.7AI score
Exploits0
0day.today
0day.today
added 2012/05/31 12:0 a.m.65 views

Sony VAIO Wireless Manager 4.0.0.0 Buffer Overflows

Exploit for hardware platform in category dos / poc Product: Wireless Manager Sony VAIO Vendor: Sony Computers Vulnerable Versions: 4.0.0.0 and probably prior Tested Version: 4.0.0.0 Vendor Notification: 7 December 2011 Vendor Patch: 20 January 2012 Public Disclosure: 30 May 2012 Vulnerability...

7AI score0.12984EPSS
Exploits6
Packet Storm
Packet Storm
added 2012/05/25 12:0 a.m.60 views

Pligg CMS 1.2.1 Cross Site Scripting / Local File Inclusion

Advisory ID: HTB23089 Product: Pligg CMS Vendor: Pligg, LLC. Vulnerable Versions: 1.2.1 and probably prior Tested Version: 1.2.1 Vendor Notification: 25 April 2012 Vendor Patch: 18 May 2012 Public Disclosure: 23 May 2012 Vulnerability Type: Local File Inclusion, Cross-Site Scripting XSS CVE...

6.5CVSS6.6AI score0.02527EPSS
Exploits3
Packet Storm
Packet Storm
added 2012/05/25 12:0 a.m.64 views

pragmaMx 1.12.1 Cross Site Scripting

Advisory ID: HTB23090 Product: pragmaMx Vendor: pragmaMx Team Vulnerable Versions: 1.12.1 and probably prior Tested Version: 1.12.1 Vendor Notification: 2 May 2012 Vendor Patch: 4 May 2012 Public Disclosure: 23 May 2012 Vulnerability Type: Cross-Site Scripting XSS CVE Reference: CVE-2012-2452...

6.3AI score0.01699EPSS
Exploits3
securityvulns
securityvulns
added 2012/04/23 12:0 a.m.81 views

Multiple XSS vulnerabilities in All-in-One Event Calendar Plugin for WordPress

Advisory ID: HTB23082 Product: All-in-One Event Calendar Plugin for WordPress Vendor: The Seed Studio Vulnerable Versions: 1.4 and probably prior Tested Version: 1.4 Vendor Notification: 21 March 2012 Public Disclosure: 11 April 2012 Vulnerability Type: Cross-Site Scripting XSS CVE References:...

4.3CVSS6.1AI score0.08946EPSS
Exploits2
Exploit DB
Exploit DB
added 2012/04/19 12:0 a.m.67 views

newscoop 3.5.3 - Multiple Vulnerabilities

Advisory ID: HTB23084 Product: Newscoop Vendor: Sourcefabric o.p.s. Vulnerable Versions: 3.5.3 and probably prior, partially 4.0 RC3 Tested Version: 3.5.3 Vendor Notification: 28 March 2012 Vendor Patch: 5 April 2012 Public Disclosure: 18 April 2012 Vulnerability Type: Remote File Inclusion, SQL...

7.5CVSS7AI score0.05633EPSS
Exploits8
exploitpack
exploitpack
added 2012/04/19 12:0 a.m.86 views

XOOPS 2.5.4 - Multiple Cross-Site Scripting Vulnerabilities

XOOPS 2.5.4 - Multiple Cross-Site Scripting Vulnerabilities Advisory ID: HTB23062 Product: XOOPS Vendor: xoops.org Vulnerable Versions: 2.5.4 and probably prior Tested Version: 2.5.4 Vendor Notification: 7 December 2011 Vendor Patch: 22 February 2012 Public Disclosure: 18 April 2012 Vulnerability...

4.3CVSS0.04162EPSS
Exploits6
Packet Storm
Packet Storm
added 2012/04/18 12:0 a.m.71 views

XOOPS 2.5.4 Cross Site Scripting

Advisory ID: HTB23062 Product: XOOPS Vendor: xoops.org Vulnerable Versions: 2.5.4 and probably prior Tested Version: 2.5.4 Vendor Notification: 7 December 2011 Vendor Patch: 22 February 2012 Public Disclosure: 18 April 2012 Vulnerability Type: XSS Cross Site Scripting CVE References: CVE-2012-098...

4.3CVSS6.5AI score0.04162EPSS
Exploits6
securityvulns
securityvulns
added 2012/04/09 12:0 a.m.165 views

Multiple vulnerabilities in Open Journal Systems (OJS)

Advisory ID: HTB23079 Product: Open Journal Systems OJS Vendor: Public Knowledge Project Vulnerable Versions: 2.3.6 and probably prior Tested Version: 2.3.6 Vendor Notification: 29 February 2012 Vendor Patch: 16 March 2012 Public Disclosure: 21 March 2012 Vulnerability Type: Arbitrary File...

6.5CVSS5.9AI score0.03482EPSS
Exploits4
securityvulns
securityvulns
added 2012/03/19 12:0 a.m.76 views

Multiple XSS in Chyrp

Advisory ID: HTB23073 Product: Chyrp Vendor: Chyrp Vulnerable Versions: 2.5b1 and probably prior Tested Version: 2.5b1 Vendor Notification: 1 February 2012 Vendor Patch: 2 February 2012 Public Disclosure: 22 February 2012 Vulnerability Type: Cross Site Scripting XSS CVE References: CVE-2012-1001...

6.6AI score0.03558EPSS
Exploits2
securityvulns
securityvulns
added 2012/03/19 12:0 a.m.76 views

Multiple vulnerabilities in Elefant CMS

Advisory ID: HTB23076 Product: Elefant CMS Vendor: Elefant CMS Vulnerable Versions: 1.1.3 beta and probably prior Tested Version: 1.1.3 beta Vendor Notification: 22 February 2012 Vendor Patch: 22 February 2012 Public Disclosure: 14 March 2012 Vulnerability Type: SQL Injection, XSS Cross Site...

4.3CVSS7AI score0.01284EPSS
Exploits0
securityvulns
securityvulns
added 2012/02/13 12:0 a.m.81 views

Multiple vulnerabilities in ZENphoto

Advisory ID: HTB23070 Product: ZENphoto Vendor: www.zenphoto.org Vulnerable Version: 1.4.2 and probably prior Tested Version: 1.4.2 Vendor Notification: 18 January 2012 Vendor Patch: 19 January 2012 Public Disclosure: 8 February 2012 Vulnerability Type: PHP Code Execution, SQL Injection, XSS...

6.8CVSS0.3AI score0.02554EPSS
Exploits5
Packet Storm
Packet Storm
added 2012/02/08 12:0 a.m.120 views

ZENphoto 1.4.2 Code Execution / XSS / SQL Injection

Advisory ID: HTB23070 Product: ZENphoto Vendor: www.zenphoto.org Vulnerable Version: 1.4.2 and probably prior Tested Version: 1.4.2 Vendor Notification: 18 January 2012 Vendor Patch: 19 January 2012 Public Disclosure: 8 February 2012 Vulnerability Type: PHP Code Execution, SQL Injection, XSS...

6.8CVSS0.5AI score0.02554EPSS
Exploits5
Packet Storm
Packet Storm
added 2012/02/02 12:0 a.m.36 views

OpenEMR 4.1.0 Local File Inclusion / Command Execution

Advisory ID: HTB23069 Product: OpenEMR Vendor: OEMR Vulnerable Version: 4.1.0 and probably prior Tested Version: 4.1.0 Vendor Notification: 11 January 2012 Vendor Patch: 29 January 2012 Public Disclosure: 01 February 2012 Vulnerability Type: Local File Inclusion, Arbitrary Command Execution...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/01/18 12:0 a.m.44 views

OneOrZero AIMS 2.8.0 Trial Build 231211 Cross Site Scripting

Advisory ID: HTB23066 Reference: https://www.htbridge.ch/advisory/xssinoneorzeroaims.html Product: OneOrZero AIMS Vendor: www.oneorzero.com http://www.oneorzero.com/ Vulnerable Version: 2.8.0 Trial build231211 and probably prior Tested Version: 2.8.0 Trial build231211 Vendor Notification: 28...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/01/12 12:0 a.m.25 views

KnowledgeTree 3.7.0.2 Cross Site Scripting

Advisory ID: HTB23065 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinknowledgetreecommunityedition.html Product: KnowledgeTree Commercial and Community Editions Vendor: KnowledgeTree Inc. http://knowledgetree.org Vulnerable Version: 3.7.0.2 and probably prior Tested Version:...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2011/12/21 12:0 a.m.41 views

PHPShop CMS Free 3.4 Cross Site Scripting / SQL Injection

No description provided by source. Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinphpshopcmsfree.html Product: PHPShop CMS Free Vendor: PHPShop Software http://www.phpshopcms.ru/ Vulnerable Version: 3.4 and probably prior Tested Version: 3.4 Vendor Notification: 23 November...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/12/20 12:0 a.m.34 views

PHPShop CMS Free 3.4 Cross Site Scripting / SQL Injection

Vulnerability ID: HTB23058 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinphpshopcmsfree.html Product: PHPShop CMS Free Vendor: PHPShop Software http://www.phpshopcms.ru/ Vulnerable Version: 3.4 and probably prior Tested Version: 3.4 Vendor Notification: 23 November 2011...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2011/12/03 12:0 a.m.19 views

Heap Memory Corruption in HP Device Access Manager for Protect Tools Information Store

No description provided by source. Vulnerable Version: Prior to v.6.1.0.1 Tested Version: 5.0.0.5 Vendor Notification: 26 August 2011 Vulnerability Type: Heap Memory Corruption Status: Fixed by Vendor Risk level: Medium Credit: High-Tech Bridge SA Security Research Lab...

7.1AI score
Exploits0
htbridge
htbridge
added 2011/11/30 12:0 a.m.29 views

Cross-site Scripting (XSS) Vulnerabilities in epesi BIM

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in epesi BIM which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in epesi BIM 1.1 The vulnerability exists due to input sanitation error in the "diratual"...

2.6CVSS6.5AI score
Exploits0Affected Software1
Rows per page
Query Builder