559 matches found
Installation Path Disclosure Weakness in MyBB
High-Tech Bridge SA Security Research Lab has discovered a weakness in MyBB which could be exploited to gain access to potentially sensitive information. 1 Installation path disclosure weakness in MyBB The weakness exists due to application reveals the full path to installation directory in an...
Cross-site Request Forgery (CSRF) Vulnerabilities in osCmax
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in osCmax which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in osCmax 1.1 The vulnerability exists due to insufficient validation of the request origin in...
Cross-site Request Forgery (CSRF) in Plogger
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Plogger which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerability in Plogger The vulnerability exists due to insufficient validation of the request...
Cross-site Scripting (XSS) Vulnerabilities in Campsite
High-Tech Bridge SA Security Research Lab has discovered two vulnerabilities in Campsite which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in Campsite 1.1 The vulnerability exists due to input sanitation error in the "fcommentsearch"...
Denial of Service Vulnerability in FlatnuX
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in FlatnuX which could be exploited to cause a denial of service. 1 Denial of service vulnerability in FlatnuX The vulnerability exists due to endless loop in the login.html script. A remote attacker can send a specially...
Cross-site Request Forgery (CSRF) Vulnerabilities in FestOS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in FestOS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in FestOS 1.1 The vulnerability exists due to insufficient validation of the request origin in...
Cross-site Request Forgery (CSRF) Vulnerabilities in Ronny CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Ronny CMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in Ronny CMS 1.1 The vulnerability exists due to insufficient validation of the request origin i...
Script Insertion Vulnerability in Eden Platform
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Eden Platform which could be exploited to perform script insertion attacks. 1 Script insertion vulnerabilities in Eden Platform Input passed to multiple parameters in testimonials/admin/list is not properly sanitized A remo...
Cross-site Request Forgery (CSRF) Vulnerabilities in SyndeoCMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in SyndeoCMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in SyndeoCMS 1.1 The vulnerability exists due to insufficient validation of the request origin i...