559 matches found
Multiple RCEs via CSRF in Dolibarr
High-Tech Bridge Security Research Lab discovered multiple CSRF vulnerabilities in a popular ERP and CRM software Dolibarr. Discovered vulnerabilities may allow remote attacker to run arbitrary commands on vulnerable system via CSRF vector. Successful exploitation of the vulnerabilities can lead ...
SQL Injection in GLPI
High-Tech Bridge Security Research Lab discovered a high-risk SQL injection vulnerability in a popular Information Resource Manager IRM system GLPI. IRM systems are usually used for management and audit of software packages, providing ITIL-compliant service desk. The vulnerability allows remote...
RCE via CSRF in phpMyFAQ
High-Tech Bridge Security Research Lab discovered a high-risk security vulnerability in a popular multilingual FAQ software phpMyFAQ. A remote attacker can execute arbitrary PHP code on vulnerable system via CSRF attack against website administrator and completely compromise vulnerable web...
Multiple Vulnerabilities in CubeCart
High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in popular open source shopping software CubeCart. The discovered vulnerabilities allow a remote attacker to compromise vulnerable website and its databases, and conduct sophisticated attacks against its users. 1 SQL...
CSRF, Authentication Bypass & RCE in GuppY
High-Tech Bridge Security Research Lab discovered two vulnerabilities in open web portal software GuppY. A remote attacker can delete arbitrary files, bypass authentication and execute arbitrary file on vulnerable system. 1 Cross-Site Request Forgery in GuppY The vulnerability exists due to...
SQL Injection and RCE in WebsiteBaker
High-Tech Bridge Security Research Lab discovered SQL injection vulnerability in WebsiteBaker CMS. A remote attacker will be able to read, write or modify arbitrary information in the database, gain complete control over the vulnerable web application and even the entire web server on which the...
Arbitrary File Content Disclosure in Atutor
High-Tech Bridge Security Research Lab discovered path traversal vulnerability in a popular web-based e-learning system Atutor. A remote attacker can view contents of arbitrary local files on the target system with privileges of the web server. The vulnerability may allow an attacker gain access ...
Remote Code Execution via CSRF in iTop
High-Tech Bridge Security Research Lab discovered a Remote Code Execution vulnerability in iTop that is exploitable via Cross-Site Request Forgery flaw that is also present in the application. The vulnerability exists due to absence of validation of HTTP request origin in...
Admin Password Reset & RCE via CSRF in Dating Pro
High-Tech Bridge Security Research Lab discovered multiple Cross-Site Request Forgery CSRF vulnerabilities in a popular dating social network Dating Pro. A remote unauthenticated attacker can perform CSRF attacks to change administrator’s credentials and execute arbitrary system commands...
SQL Injection in WeBid
High-Tech Bridge Security Research Lab discovered SQL Injection vulnerability in a poplar web auction software WeBid. The vulnerability can be exploited by remote non-authenticated attacker to alter present SQL query and execute arbitrary SQL commands in application's database. Successful...
SQL Injection in webSPELL
High-Tech Bridge Security Research Lab discovered two vulnerabilities in a popular CMS webSPELL developed for the needs of esport related communities. The vulnerability allows a remote authenticated attacker with cashbox access privileges to execute arbitrary SQL commands in application’s databas...
Remote Code Execution in Exponent
High-Tech Bridge Security Research Lab discovered critical vulnerability in Exponent CMS, which can be exploited to inject and execute arbitrary PHP code on the vulnerable system with the privileges of the web server. The vulnerability resides within "/install/index.php" script, when handling...
SQL Injection in TestLink
High-Tech Bridge Security Research Lab discovered high-risk SQL injection vulnerability in TestLink Open Source Test Management. The vulnerability can be exploited to alter the present SQL query and gain access to potentially sensitive information or even to completely compromise the vulnerable w...
SSO Authentication Bypass and Website Takeover in DOKEOS
High-Tech Bridge Security Research Lab discovered a high-risk vulnerability in a popular e-learning software DOKEOS. A remote unauthenticated attacker can bypass authentication process and login to the vulnerable website with an arbitrary account including administrator's one. Successful...
SQL Injection in SocialEngine
High-Tech Bridge Security Research Lab discovered SQL-Injection vulnerability in a popular social networking software SocialEngine. The vulnerability can be exploited to gain access to potentially sensitive information in database and compromise the entire website. The vulnerability exists due to...
RCE via CSRF in osCommerce
High-Tech Bridge Security Research Lab discovered vulnerability in popular e-commerce software osCommerce with 280,000 store owners according to the vendor. The vulnerability can be exploited to execute arbitrary PHP code on the remote system, compromise the vulnerable web application, its databa...
Remote Code Execution in Roundcube
High-Tech Bridge Security Research Lab discovered a path traversal vulnerability in a popular webmail client Roundcube. Vulnerability can be exploited to gain access to sensitive information and under certain circumstances to execute arbitrary code and totally compromise the vulnerable server. Th...
SQL Injection in Osclass
High-Tech Bridge Security Research Lab discovered a high-risk SQL injection vulnerability in Osclass, a popular web-based software for building customized classifieds marketplace. The vulnerability can be exploited to gain access to potentially sensitive information in the application database an...
RCE via CSRF in osCmax
High-Tech Bridge Security Research Lab discovered 2 PHP Local File Inclusion vulnerabilities in osCmax, a popular web-based e-commerce application and shopping cart. The vulnerabilities can be exploited to execute arbitrary PHP code on the target system. Successful exploitation of these...
RCE in Zen Cart via Arbitrary File Inclusion
High-Tech Bridge Security Research Lab discovered critical vulnerability in a popular e-commerce software Zen Cart, which can be exploited by remote non-authenticated attackers to compromise vulnerable system. A remote unauthenticated attacker might be able to execute arbitrary PHP code on the...
Multiple SQL Injection Vulnerabilities in mcart.xls Bitrix Module
High-Tech Bridge Security Research Lab discovered multiple SQL Injection vulnerabilities in mcart.xls Bitrix module, which can be exploited to execute arbitrary SQL queries and obtain potentially sensitive data, modify information in database and gain complete control over the vulnerable website...
PHP File Inclusion in bitrix.mpbuilder Bitrix Module
High-Tech Bridge Security Research Lab discovered vulnerability in bitrix.mpbuilder Bitrix module, which can be exploited to include and execute arbitrary PHP file on the target system with privileges of the web server. The attacker will be able to execute arbitrary system commands and gain...
SQL Injection in orion.extfeedbackform Bitrix Module
High-Tech Bridge Security Research Lab discovered two vulnerabilities in orion.extfeedbackform Bitrix module, can be exploited to execute arbitrary SQL queries and obtain potentially sensitive data, modify information in database and gain complete control over the vulnerable website. All discover...
Path Traversal via CSRF in bitrix.xscan Bitrix Module
High-Tech Bridge Security Research Lab discovered vulnerability in bitrix.xscan Bitrix module, intended to discover and neutralize malware on the website. The vulnerability can be exploited to change extension of arbitrary PHP files on the target system and gain access to potentially sensitive...
Reflected XSS in Ultimate Member WordPress Plugin
High-Tech Bridge Security Research Lab discovered vulnerability in Ultimate Member WordPress plugin, intended for managing users’ profiles. The vulnerability can be used against website administrators to perform Cross-Site Scripting XSS attacks. Anonymous attacker might be able to steal...
Reflected XSS in Role Scoper WordPress Plugin
High-Tech Bridge Security Research Lab discovered Cross-Site scripting vulnerability in a popular Role Scoper WordPress plugin, present on more than 10 000 websites. The vulnerability can be exploited by anonymous attackers against website administrators. Successful attack may allow to steal...
Remote File Inclusion in Gwolle Guestbook WordPress Plugin
High-Tech Bridge Security Research Lab discovered a critical Remote File Inclusion RFI in Gwolle Guestbook WordPress plugin, which can be exploited by non-authenticated attacker to include remote PHP file and execute arbitrary code on the vulnerable system. HTTP GET parameter "abspath" is not bei...
Two Reflected XSS Vulnerabilities in Calls to Action WordPress plugin
High-Tech Bridge Security Research Lab discovered two Cross-Site Scripting XSS vulnerabilities in a popular WordPress plugin Calls to Action. A remote attacker might be able to steal user's and administrator’s cookies, credentials and browser history, modify web page content to perform phishing...
Reflected Cross-Site Scripting (XSS) in SourceBans
High-Tech Bridge Security Research Lab discovered vulnerability in SourceBans, which can be exploited to perform Cross-Site Scripting XSS attacks against web application users. The vulnerability exists due to insufficient filtration of input-data passed via the "advSearch" HTTP GET parameter to...
RCE and SQL injection via CSRF in Horde Groupware
High-Tech Bridge Security Research Lab discovered three Cross-Site Request Forgery CSRF vulnerabilities in a popular collaboration suite Horde Groupware, used by a variety of companies around the world. These vulnerabilities are very dangerous, since they can be used in targeted attacks against...
Multiple SQL Injections in Open Source Bike Share
High-Tech Bridge Security Research Lab discovered multiple SQL injection vulnerabilities in Open Source Bike Share. Successful exploitation of these vulnerabilities will enable the attacker to obtain sensitive data from the database such as usernames and passwords, to post fake content or malware...
Two CSRF Vulnerabilities in Magento
High-Tech Bridge Security Research Lab discovered vulnerability in Magento, which can be exploited to perform CSRF Cross-Site Request Forgery attacks and delete shipment address and whishlist items. 1 Two CSRF Vulnerabilities in Magento: CVE-2015-7983 The vulnerability exists due to failure in th...
Cross-Site Request Forgery in Cerb
High-Tech Bridge Security Research Lab discovered CSRF vulnerability in Cerb platform, which can be exploited to perform Cross-Site Request Forgery attacks against administrators of vulnerable web application to add administrate accounts into the system. The vulnerability exists due to failure of...
Reflected Cross-Site Scripting (XSS) in iTop
High-Tech Bridge Security Research Lab discovered vulnerability in iTop, which can be exploited to perform Cross-Site Scripting XSS attacks against web application users. iTop is a critical application, which is used to cover the entire set of ITIL processes. Successful attack on this web...
SQL Injection in Count Per Day WordPress Plugin
High-Tech Bridge Security Research Lab discovered SQL Injection vulnerability in Count Per Day WordPress plugin, which can be exploited to execute arbitrary SQL queries in application’s database, gain control of potentially sensitive information and compromise the entire website. The vulnerabilit...
Multiple XSS Vulnerabilities in Paid Memberships Pro WordPress Plugin
High-Tech Bridge Security Research Lab discovered vulnerability in Paid Memberships Pro WordPress plugin, which can be exploited to perform Cross-Site Scripting XSS attacks against website administrators. 1 Cross-Site Scripting XSS in Paid Memberships Pro WordPress plugin: CVE-2015-5532 1.1 Input...
Cross-Site Request Forgery on Oxwall
High-Tech Bridge Security Research Lab discovered vulnerability in Oxwall, which can be exploited to perform CSRF Cross-Site Request Forgery attacks. An attacker might be able to put the website under maintenance and perform XSS attacks against website visitors. The vulnerability exists due to...
Cross-Site Scripting (XSS) in qTranslate WordPress Plugin
High-Tech Bridge Security Research Lab discovered vulnerability in qTranslate WordPress plugin, which can be exploited to perform Cross-Site Scripting XSS attacks against website administrators. Successful exploitation of this vulnerability may allow a remote attacker to gain complete control ove...
Path Traversal in BlackCat CMS
High-Tech Bridge Security Research Lab discovered vulnerability in BlackCat CMS, which can be exploited to view contents of arbitrary files on the local system. An attacker might be able to obtain potentially sensitive or system information, and even compromise the vulnerable system. The...
Use-After-Free in PHP
High-Tech Bridge Security Research Lab discovered use-after-free vulnerability in a popular programming language PHP, which can be exploited to cause crash and possibly execute arbitrary code on the target system. The vulnerability resides within the 'splheapobjectfreestorage' PHP function when...
OS Command Injection in Vesta Control Panel
High-Tech Bridge Security Research Lab discovered critical vulnerability in Vesta Control Panel, which can be exploited to execute arbitrary system commands and gain complete access to the vulnerable system. The vulnerability exists due to insufficient filtration of user-input passed via the...
Multiple Vulnerabilities in ISPConfig
High-Tech Bridge Security Research Lab discovered two vulnerabilities in a popular hosting control panel ISPConfig. The vulnerabilities can be exploited to execute arbitrary SQL commands in application database, perform a CSRF attack and gain complete control over the web application. 1 SQL...
Arbitrary File Disclosure and Open Redirect in Bonita BPM
High-Tech Bridge Security Research Lab two vulnerabilities in Bonita BPM Portal Bonita's web interface running by default on port 8080, which can be exploited by remote non-authenticated attacker to compromise the vulnerable web application and the web server on which it is hosted. 1 Path Travers...
Local PHP File Inclusion in ResourceSpace
High-Tech Bridge Security Research Lab discovered vulnerability in ResourceSpace, which can be exploited to include arbitrary local PHP file, execute PHP code, and compromise vulnerable web application and even entire web server on which the application is hosted. The vulnerability exists due to...
Stored XSS in WP Photo Album Plus WordPress Plugin
High-Tech Bridge Security Research Lab discovered stored XSS vulnerability in WP Photo Album Plus WordPress plugin, which can be exploited to perform Cross-Site Scripting attacks against administrators of vulnerable WordPress installation. An attacker might be able to hijack administrator’s sessi...
Reflected Cross-Site Scripting (XSS) in SearchBlox
High-Tech Bridge Security Research Lab discovered XSS vulnerability in SearchBlox, which can be exploited to perform Cross-Site Scripting attacks against the vulnerable web application administrators. Input passed via the "menu2" HTTP GET parameter to "/searchblox/admin/main.jsp" script is not...
Arbitrary Variable Overwrite in eShop WordPress Plugin
High-Tech Bridge Security Research Lab discovered security vulnerability in eShop WordPress Plugin, which can be exploited by remote attacker to overwrite arbitrary PHP variables within the context of the vulnerable application. The vulnerability exists due to insufficient validation of...
Multiple Vulnerabilities in TheCartPress WordPress plugin
High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in TheCartPress WordPress plugin, which can be exploited to execute arbitrary PHP code, disclose sensitive data, and perform Cross-Site Scripting attacks against users of WordPress installations with the vulnerable plugin....
Multiple Cross-Site Scripting (XSS) in FreePBX
High-Tech Bridge Security Research Lab discovered multiple XSS vulnerabilities in FreePBX, which can be exploited to perform Cross-Site Scripting XSS attacks against web application administrators. This vulnerability can be used to steal administrator’s cookies, perform phishing and...
Arbitrary file deletion and multiple XSS vulnerabilities in pfSense
High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in web interface of pfSense, which can be exploited to perform Cross-Site Scripting XSS attacks against administrator of pfSense and delete arbitrary files via CSRF Cross-Site Request Forgery attacks. Successful exploitati...