559 matches found
Multiple Vulnerabilities in PluXml
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in PluXml which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerabilities in PluXml 1.1 The vulnerability exists due to input sanitation...
Cross-site Request Forgery (CSRF) Vulnerabilities in Amiro.CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Amiro.CMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in Amiro.CMS 1.1 The vulnerability exists due to insufficient validation of the request origin i...
Multiple Vulnerabilities in CMS Source
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in CMS Source, which could be exploited to perform cross-site scripting and SQL Injection attacks and compromise vulnerable system. 1 Cross-site scripting XSS vulnerabilities in CMS Source 1.1 The vulnerability exis...
Directory Traversal Vulnerability in 32bit FTP Client
High-Tech Bridge SA Security Research Lab has discovered vulnerability in 32bit FTP Client which could be exploited to execute arbitrary code on vulnerable system. 1 Directory Traversal Vulnerability in 32bit FTP Client The vulnerability exists due to insufficient sanitation of the downloaded...
Directory Traversal Vulnerability in TurboFTP Client
High-Tech Bridge SA Security Research Lab has discovered vulnerability in TurboFTP Client which could be exploited to execute arbitrary code on vulnerable system. 1 Directory Traversal Vulnerability in TurboFTP Client The vulnerability exists due to insufficient sanitation of the downloaded...
Multiple Vulnerabilities in phpwcms
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in phpwcms which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in phpwcms The vulnerability exists due to input sanitation error ...
Cross-site Scripting (XSS) Vulnerability in ForumCMS
High-Tech Bridge SA Security Research Lab has discovered vulnerability in ForumCMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in ForumCMS The vulnerability exists due to input sanitation error in the "keyword" parameter in...
Multiple Vulnerabilities in BloofoxCMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BloofoxCMS which could be exploited to perform cross-site request forgery and SQL injection attacks. 1 Cross-site request forgery CSRF in BloofoxCMS The vulnerability exists due to insufficient validation of the...
Cross-site Scripting (XSS) Vulnerability in transLucid
High-Tech Bridge SA Security Research Lab has discovered vulnerability in transLucid which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in transLucid The vulnerability exists due to input sanitation error in the "xajaxargs" parameter in...
Cross-site Scripting (XSS) Vulnerabilities in Webmedia Explorer
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Webmedia Explorer which could be exploited to perform cross-site scripting and script insertion attacks. 1 Cross-site scripting XSS vulnerability in Webmedia Explorer The vulnerability exists due to input...
XSS vulnerability in Jaws
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Jaws which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in Jaws The vulnerability exists due to input sanitation error in the "url" parameter in the "edit profile"...
Cross-site Scripting Vulnerability in ecoCMS
High-Tech Bridge SA Security Research Lab has discovered vulnerability in ecoCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in ecoCMS: CVE-2010-5046 Input validation error was found in the "p" parameter in /admin.php. A remote attack...
Multiple Vulnerabilities in OrangeHRM
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in OrangeHRM, which can be exploited to perform Cross-Site Scripting XSS and SQL Injection attacks. 1 Cross-Site Scripting XSS vulnerabilities in OrangeHRM 1.1 Input passed via the "uniqcode" GET parameter to...
Open Redirect Weakness in MBoard
High-Tech Bridge SA Security Research Lab has discovered weakness in MBoard which could be exploited to perform phishing attacks. 1 Open redirect weakness in MBoard The weakness exists due to insufficient validation of the input data in the "url" parameter in go.php when redirecting users to...
Ashampoo 3D CAD Professional 3 ActiveX control Insecure Method
High-Tech Bridge SA Security Research Lab has discovered a vulnerability in Ashampoo 3D CAD Professional 3 ActiveX control which could be exploited to compromise vulnerable system. 1 Insecure method in Ashampoo 3D CAD Professional 3 ActiveX Control The vulnerability is caused due to the...
Cross-site Scripting (XSS) Vulnerability in FanUpdate
High-Tech Bridge SA Security Research Lab has discovered vulnerability in FanUpdate which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in FanUpdate The vulnerability exists due to input sanitation error in the "pageTitle" parameter in...
Multiple Vulnerabilities in Eleanor CMS
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Eleanor CMS which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerability in Eleanor CMS The vulnerability exists due to input sanitation error in the...
Installation Path Disclosure Weakness in bbPress
High-Tech Bridge SA Security Research Lab has discovered a weakness in bbPress which could be exploited to gain access to potentially sensitive information. 1 Installation path disclosure weakness in bbPress The weakness exists due to application reveals the full path to installation directory in...
Multiple Vulnerabilities in MiniBB
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in MiniBB which could be exploited to perform script insertion and SQL injection attacks. 1 Script insertion vulnerability in MiniBB Input passed to the "url" BBCode tag is not properly sanitized. A remote attacker...
Multiple Vulnerabilities in eoCMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in eoCMS which could be exploited to perform script insertion and SQL injection attacks, gain access to sensitive information and compromise vulnerable system. 1 Script insertion vulnerability in eoCMS An input...
Cross-site Request Forgery (CSRF) Vulnerabilities in MemHT Portal
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in MemHT Portal which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in MemHT Portal 1.1 The vulnerability exists due to insufficient validation of the request...
Cross-site Request Forgery (CSRF) in Lara
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Lara which could be exploited to perform cross-site request forgery attacks. 1 Cross-site Request Forgery CSRF in Lara The vulnerability exists due to insufficient validation of the request origin in ui/changepassword. A...
Multiple Vulnerabilities in Elxis CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Elxis CMS which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerabilities in Elxis CMS The vulnerability exists due to input sanitation error in the...
Multiple Vulnerabilities in CompuCMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities CompuCMS, which could be exploited to perform cross-site scripting and SQL Injection attacks. 1 Cross-site scripting XSS vulnerabilities in CompuCMS 1.1 The vulnerability exists due to input sanitation error in the...
Directory Traversal Vulnerability in TurboFTP Server
High-Tech Bridge SA Security Research Lab has discovered vulnerability in TurboFTP Server which could be exploited to delete or execute arbitrary files on vulnerable system. 1 Directory Traversal Vulnerability in TurboFTP Server The vulnerability exists due to insufficient sanitation of the...
Cross-site Scripting (XSS) Vulnerability in DSite CMS
High-Tech Bridge SA Security Research Lab has discovered vulnerability in DSite CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in DSite CMS The vulnerability exists due to input sanitation error in the "buttonname" parameter in...
Cross-site Scripting (XSS) Vulnerability in Taggon CMS
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Taggon CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Taggon CMS The vulnerability exists due to input sanitation error in the multiple parameters in...
Cross-site Scripting (XSS) Vulnerabilities in WebPress
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in WebPress which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in WebPress 1.1 The vulnerability exists due to input sanitation error in the "idnummod" parameter in...
Cross-site Scripting (XSS) Vulnerability in CMSQLite
High-Tech Bridge SA Security Research Lab has discovered vulnerability in CMSQLite which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in CMSQLite The vulnerability exists due to input sanitation error in the "langId" parameter in...
Cross-site Scripting (XSS) Vulnerabilities in FlatNux CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in FlatNux CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in FlatNux CMS 1.1 The vulnerability exists due to input sanitation error in the "body"...
Cross-site Scripting Vulnerability in 360 Web Manager
High-Tech Bridge SA Security Research Lab has discovered vulnerability in 360 Web Manager which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in 360 Web Manager The vulnerability exists due to input sanitation error in the "IDM" parameter in...
SQL injection in Social Slider
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Social Slider, which can be exploited to perform SQL injection attacks. 1 SQL Injection Vulnerability in Social Slider Input passed via the "rA" POST parameter to /wp-content/plugins/social-slider-2/ajax.php is not properly...
Cross-site Request Forgery in e107
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in e107 which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in e107 The vulnerability exists due to insufficient verification of the request origin in...
Multiple Vulnerabilities in Free Simple CMS
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Free Simple CMS which could be exploited to perform cross-site scripting attacks and compromise vulnerable system. 1 Cross-site scripting XSS vulnerabilities in Free Simple CMS 1.1 The vulnerability exists due to input...
Buffer Overflow Vulnerability in Gogago YouTube Video Converter ActiveX Control
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Gogago YouTube Video Converter ActiveX Control which could be exploited to compromise vulnerable system. 1 Buffer Overflow Vulnerability in Gogago YouTube Video Converter ActiveX Control Boundary error exists in the...
Multiple Vulnerabilities in ZENphoto
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in ZENphoto which could be exploited to perform cross-site scripting attacks and disclose potentially sensitive information. 1 Cross-site scripting XSS vulnerability in ZENphoto The vulnerability exists due to input sanitati...
Cross-site Scripting (XSS) Vulnerabilities in webSPELL
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in webSPELL which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in webSPELL 1.1 The vulnerability exists due to input sanitation error in the "pass" and "touser...
Multiple Vulnerabilities in SyndeoCMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in SyndeoCMS which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerabilities in SyndeoCMS 1.1 The vulnerability exists due to input sanitation error in...
Cross-site Scripting (XSS) Vulnerabilities in Sodahead Polls
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Sodahead Polls which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in Sodahead Polls 1.1 The vulnerability exists due to input sanitation errors in the...
Multiple Vulnerabilities in 1 Flash Gallery wordpress plugin
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in 1 Flash Gallery wordpress plugin which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerability in 1 Flash Gallery wordpress plugin The vulnerability exists du...
SQL Injection Vulnerability in Z-Vote
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Z-Vote WordPress plugin which could be exploited to perform SQL injection attacks. 1 SQL injection vulnerability in Z-Vote The vulnerability exists due to input sanitation errors in the "zvote" parameter in zvote.php. A...
Multiple Vulnerabilities in Comment Rating
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Comment Rating which could be exploited to perform SQL injection attacks and gain access to sensitive information. 1 SQL injection vulnerabilities in Comment Rating The vulnerability exists due to input sanitatio...
Multiple Vulnerabilities in Pivotx
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Pivotx which could be exploited to perform cross-site scripting attacks and disclose potentially sensitive information. 1 Cross-site scripting XSS vulnerabilities in Pivotx: CVE-2011-0772 1.1 The vulnerability...
Cross-site Request Forgery (CSRF) Vulnerabilities in diafan.CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in diafan.CMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerabilities in diafan.CMS 1.1 The vulnerability exists due to insufficient validation of th...
Multiple Vulnerabilities in Injader CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Injader CMS which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerabilities in Injader CMS 1.1 The vulnerability exists due to input sanitation error...
Installation Path Disclosure Weakness in Tribiq CMS | HTB22640
High-Tech Bridge SA Security Research Lab has discovered a weakness in Tribiq CMS which could be exploited to gain access to potentially sensitive information. 1 Installation path disclosure weakness in Tribiq CMS The weakness exists due to application reveals the full path to installation...
XSS in i-Web Suite
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in i-Web Suite which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerability in i-Web Suite The vulnerability exists due to input sanitation error in th...
Cross-site Request Forgery (CSRF) Vulnerabilities in Mystic
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Mystic which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in Mystic 1.1 The vulnerability exists due to insufficient validation of the request origin in...
Cross-site Scripting (XSS) Vulnerability in WebsiteBaker
High-Tech Bridge SA Security Research Lab has discovered vulnerability in WebsiteBaker which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in WebsiteBaker The vulnerability exists due to input sanitation error in the "websitefooter" parameter...
SQL Injection Vulnerabilities in Mac's CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Mac's CMS which could be exploited to perform SQL injection attacks. 1 SQL injection vulnerability in Mac's CMS 1.1 The vulnerability exists due to input sanitation errors in the “commentId” parameter in index.ph...