Lucene search
K
HtbridgeMost viewed

559 matches found

htbridge
htbridge
added 2014/10/22 12:0 a.m.22 views

Сross-Site Request Forgery (CSRF) in xEpan

High-Tech Bridge Security Research Lab discovered vulnerability in xEpan, which can be exploited to compromise vulnerable web site. 1 Сross-Site Request Forgery CSRF in xEpan: CVE-2014-8429 The vulnerability exists due to insufficient validation of the HTTP request origin when creating new user...

5.1CVSS0.5AI score0.02242EPSS
Exploits5Affected Software1
htbridge
htbridge
added 2013/03/20 12:0 a.m.22 views

Multiple XSS in Hero Framework

High-Tech Bridge Security Research Lab discovered two XSS vulnerabilities in Hero Framework, which can be exploited to perform cross-site scripting attacks against vulnerable application. 1 Multiple XSS in Hero Framework: CVE-2013-2649 1.1 The vulnerability exists due to insufficient sanitisation...

4.3CVSS6.2AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/09/07 12:0 a.m.22 views

Multiple Vulnerabilities in Traq

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Traq which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerabilities in Traq 1.1 The vulnerability exists due to input sanitation error in the "edit"...

7.5CVSS7.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/07/27 12:0 a.m.22 views

Cross-site Scripting (XSS) Vulnerabilities in WP-Stats-Dashboard

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in WP-Stats-Dashboard which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in WP-Stats-Dashboard 1.1 The vulnerability exists due to input sanitation error in...

2.6CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/12 12:0 a.m.22 views

Cross-site Scripting (XSS) Vulnerability in Max's PHP Photo Album

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Max's PHP Photo Album which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Max's PHP Photo Album The vulnerability exists due to input sanitation error in the "id"...

4.3CVSS6.1AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/05 12:0 a.m.22 views

Multiple Vulnerabilities in WP-StarsRateBox

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in WP-StarsRateBox WordPress Plugin which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerability in WP-StarsRateBox The vulnerability exists due to inp...

7.5CVSS7.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/03/31 12:0 a.m.22 views

Multiple Vulnerabilities in phpAlbum.net

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in phpAlbum.net which could be exploited to perform cross-site scripting and cross-site request forgery attacks and compromise vulnerable system. 1 Cross-site scripting XSS vulnerability in phpAlbum.net The...

10CVSS6.9AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/03/03 12:0 a.m.22 views

Cross-site Scripting (XSS) Vulnerabilities in Rating-Widget

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Rating-Widget WordPress plugin which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in Rating-Widget 1.1 The vulnerability exists due to input sanitation...

2.6CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/02/17 12:0 a.m.22 views

Cross-site Request Forgery (CSRF) Vulnerabilities in Pragyan CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Pragyan CMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerabilities in Pragyan CMS 1.1 The vulnerability exists due to insufficient validation of...

5.1CVSS7.4AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/02/15 12:0 a.m.22 views

Multiple Vulnerabilities in Mingle Forum wordpress plugin

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Mingle Forum wordpress plugin which could be exploited to perform script insertion attacks and disclose potentially sensitive information. 1 Script insertion vulnerability in Mingle Forum wordpress plugin Input passed to...

4.3CVSS7AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/02/03 12:0 a.m.22 views

Installation Path Disclosure Weakness in Coppermine

High-Tech Bridge SA Security Research Lab has discovered a weakness in Coppermine which could be exploited to gain access to potentially sensitive information. 1 Installation path disclosure weakness in Coppermine The weakness exists due to application reveals the full path to installation...

5CVSS6.9AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/01/20 12:0 a.m.22 views

Multiple Vulnerabilities in ReOS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in ReOS which could be exploited to perform SQL injection attacks and compromise vulnerable system. 1 SQL injection vulnerabilities in ReOS 1.1 The vulnerability exists due to input sanitation errors in the...

7.6CVSS8.7AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/11/30 12:0 a.m.22 views

Multiple Vulnerabilities in BEdita

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BEdita which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in BEdita The vulnerability exists due to input sanitation error in...

5.1CVSS7AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/11/22 12:0 a.m.22 views

Local File Inclusion Vulnerability in Exponent CMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Exponent CMS which could be exploited to include and execute arbitrary local files on the target system. 1 Local file inclusion in Exponent CMS Input passed to the "module" parameter in podcast.php and rss.php is not proper...

7.6CVSS7.3AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/10/19 12:0 a.m.22 views

Cross-site Request Forgery (CSRF) Vulnerabilities in Kandidat CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Kandidat CMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in Kandidat CMS 1.1 The vulnerability exists due to insufficient validation of the request...

7.4AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/10/05 12:0 a.m.22 views

Cross-site Request Forgery (CSRF) Vulnerabilities in sNews

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in sNews which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in sNews 1.1 The vulnerability exists due to insufficient validation of the request origin in...

7.4AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/08/09 12:0 a.m.22 views

Multiple vulnerabilities in TCMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Target CMS TCMS, which could be exploited to perform cross-site scripting and SQL Injection attacks, read arbitrary files and compromise vulnerable system. 1 Cross-site scripting XSS vulnerabilities in TCMS 1.1 A...

7.6CVSS7.8AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/06/03 12:0 a.m.22 views

Cross-site Scripting (XSS) Vulnerabilities in synType CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in synType CMS which could be exploited to perform cross-site scripting and script insertion attacks. 1 Cross-site scripting XSS vulnerability in synType CMS The vulnerability exists due to input sanitation error in...

4.3CVSS6.3AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/10/26 12:0 a.m.21 views

Multiple Vulnerabilities in webERP

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in webERP, which can be exploited to perform information disclosure, cross-site scripting and SQL injection attacks. 1 Cross-Site Scripting XSS vulnerabilities in webERP Input appended to the URL in multiple files i...

7.5CVSS7.8AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/05/03 12:0 a.m.21 views

Remote File Inclusion Vulnerability in ACal

High-Tech Bridge SA Security Research Lab has discovered vulnerability in ACal which could be exploited to compromise vulnerable system. 1 Remote file inclusion vulnerability in ACal Input passed to the "path" parameter in embed/day.php and embed/month.php scripts is not properly sanitized before...

9.3CVSS8.1AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/14 12:0 a.m.21 views

Multiple Vulnerabilities in phpGraphy

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in phpGraphy which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in phpGraphy The vulnerability exists due to input sanitation error in th...

4.3CVSS6.4AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/12 12:0 a.m.21 views

Cross-site Request Forgery (CSRF) Vulnerabilities in phpList

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in phpList which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerabilities in phpList 1.1 The vulnerability exists due to insufficient validation of the request origi...

5.1CVSS7.3AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/05 12:0 a.m.21 views

Multiple Vulnerabilities in Dalbum

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Dalbum which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in Dalbum The vulnerability exists due to input sanitation error in...

5.1CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/02/03 12:0 a.m.21 views

Installation Path Disclosure Weakness in Flatnux

High-Tech Bridge SA Security Research Lab has discovered a weakness in Flatnux which could be exploited to gain access to potentially sensitive information. 1 Installation path disclosure weakness in Flatnux The weakness exists due to application reveals the full path to installation directory in...

5CVSS6.9AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/11/04 12:0 a.m.21 views

Multiple Vulnerabilities in CompactCMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in CompactCMS which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerabilities in CompactCMS 1.1 The vulnerability exists due to input sanitation error i...

7.5CVSS7.6AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/07/27 12:0 a.m.21 views

Cross-site Request Forgery (CSRF) Vulnerabilities in Onyx

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Onyx which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in Onyx 1.1 The vulnerability exists due to insufficient validation of the request origin in...

7.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/07/27 12:0 a.m.21 views

Cross-site Scripting (XSS) Vulnerability in Edit-X CMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Edit-X CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Edit-X CMS The vulnerability exists due to input sanitation error in the "searchtext" parameter in...

4.3CVSS6AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/07/26 12:0 a.m.21 views

Multiple Cross-site Scripting (XSS) Vulnerabilities in allinta CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in allinta CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in allinta CMS 1.1 The vulnerability exists due to input sanitation error in the "langURL"...

4.3CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/06/03 12:0 a.m.21 views

Cross-site Request Forgery (CSRF) Vulnerabilities in eFront

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in eFront which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in eFront 1.1 The vulnerability exists due to insufficient validation of the request origin in...

5.1CVSS7.4AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/06/07 12:0 a.m.20 views

Cross-site Scripting Vulnerabilities in Open-Realty

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Open-Realty, which can be exploited to perform cross-site scripting attacks. 1 Cross-site scripting vulnerabilities in Open-Realty 1.1 Input passed via the "name", "email", "friendemail", "subject", "message" POS...

4.3CVSS6.9AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/05/12 12:0 a.m.20 views

Cross-site Scripting (XSS) Vulnerabilities in TTChat

High-Tech Bridge SA Security Research Lab has discovered two vulnerabilities in TTChat which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in TTChat The vulnerability exists due to input sanitation error in the "msg" parameter in default.ph...

4.3CVSS6.3AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/05/05 12:0 a.m.20 views

Local File Inclusion Vulnerability in TeamCal Pro

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in TeamCal Pro which could be exploited to compromise vulnerable system. 1 Local file inclusion vulnerability in TeamCal Pro The vulnerability exists due to input sanitation error in the "lang" parameter in index.php. A remo...

7.6CVSS7.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/12/21 12:0 a.m.20 views

Cross-site Scripting (XSS) Vulnerability in WonderCMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in WonderCMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in WonderCMS The vulnerability exists due to input sanitation error in the "content" parameter in...

4.3CVSS6AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/08/18 12:0 a.m.20 views

Script Insertion Vulnerabilities in ArtGK CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in ArtGK CMS which could be exploited to perform script insertion attacks. 1 Script insertion vulnerabilities in ArtGK CMS 1.1 Input passed to the "content" parameter in cms/classes/CForm.php is not properly sanitiz...

7AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/08/05 12:0 a.m.20 views

Cross-site Scripting (XSS) Vulnerability in MAXdev

High-Tech Bridge SA Security Research Lab has discovered vulnerability in MAXdev which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in MAXdev The vulnerability exists due to input sanitation error in the "sid" parameter in modules.php. A...

4.3CVSS6AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/07/01 12:0 a.m.20 views

Cross-site Scripting (XSS) Vulnerability in Gekko Web Builderer

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Gekko Web Builder which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Gekko Web Builder The vulnerability exists due to input sanitation error in the "app" parameter...

2.6CVSS6AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/09/21 12:0 a.m.19 views

Cross-site Scripting Vulnerabilities in Pretty Link WordPress Plugin

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Pretty Link WordPress Plugin which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in Pretty Link WordPress Plugin 1.1 Input passed via the "mindate" GET...

4.3CVSS6.4AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/21 12:0 a.m.19 views

Cross-site Request Forgery (CSRF) in VCalendar

High-Tech Bridge SA Security Research Lab has discovered vulnerability in VCalendar which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in VCalendar The vulnerability exists due to insufficient validation of the request origin in...

5.1CVSS6.7AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/03/29 12:0 a.m.19 views

Cross-site Scripting (XSS) Vulnerability in WebCalendar

High-Tech Bridge SA Security Research Lab has discovered vulnerability in WebCalendar which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in WebCalendar The vulnerability exists due to input sanitation error in the "lastlogin" parameter in...

4.3CVSS6AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/03/17 12:0 a.m.19 views

Cross-site Request Forgery (CSRF) in Feng Office

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Feng Office which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in Feng Office The vulnerability exists due to insufficient validation of the request origin in index.php...

5.1CVSS6.7AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/02/01 12:0 a.m.19 views

Multiple Vulnerabilities in Wikipad

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Wikipad which could be exploited to perform cross-site scripting and cross-site request forgery attacks and disclose potentially sensitive information. 1 Cross-site scripting XSS vulnerability in Wikipad The vulnerability...

5.1CVSS6.3AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/10/13 12:0 a.m.19 views

Cross-site Request Forgery (CSRF) Vulnerabilities in BlogBird

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BlogBird which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in BlogBird 1.1 The vulnerability exists due to insufficient validation of the request origin in...

7.4AI score
Exploits0
htbridge
htbridge
added 2010/07/01 12:0 a.m.19 views

Cross-site Scripting (XSS) Vulnerability in Vosao CMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Vosao CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Vosao CMS The vulnerability exists due to input sanitation error in the " id" parameter in...

2.6CVSS6AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/04/18 12:0 a.m.19 views

Cross-site Scripting Vulnerabilities in eliteCMS

High-Tech Bridge SA Security Research Lab has discovered two vulnerabilities in eliteCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting XSS vulnerabilities in eliteCMS 1.1 An input sanitation error was found in the "page" parameter in...

4.3CVSS6.3AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/09/21 12:0 a.m.18 views

Multiple vulnerabilities in BugFree

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BugFree which can be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in BugFree 1.1 Input passed via the "ActionType" GET parameter to Bug.php is not properly sanitis...

4.3CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/05/03 12:0 a.m.18 views

Cross-site Scripting (XSS) Vulnerabilities in PHP Calendar Basic

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in PHP Calendar Basic which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in PHP Calendar Basic 1.1 The vulnerability exists due to input sanitation errors in...

4.3CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/14 12:0 a.m.18 views

Cross-site Scripting (XSS) Vulnerability in BackupPC

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BackupPC which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in BackupPC The vulnerability exists due to input sanitation error in multiple parameters in...

4.3CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2010/05/10 12:0 a.m.18 views

Multiple Vulnerabilities in RuubikCMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in RuubikCMS which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in RuubikCMS 1.1 The vulnerability exists due to input sanitatio...

5.1CVSS6.5AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/04/12 12:0 a.m.17 views

Script Insertion Vulnerabilities in Noah's Classifieds

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Noah's Classifieds which could be exploited to perform script insertion attacks. 1 Script insertion vulnerability in Noah's Classifieds Input passed to the "col18", "description" and "titlePrefix" parameter in index.php i...

7AI score
Exploits0Affected Software1
htbridge
htbridge
added 2011/02/22 12:0 a.m.17 views

Cross-site Scripting (XSS) Vulnerability in Inline Gallery

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Inline Gallery WordPress plugin which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Inline Gallery The vulnerability exists due to input sanitation error in the " do...

4.3CVSS6AI score
Exploits0Affected Software1
Total number of security vulnerabilities559