Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hashtopus project vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2017-11677
Cross-site scripting (XSS) vulnerability in Hashtopus 1.5g allows remote malicious users to inject arbitrary web script or HTML via the query string to admin.php.
Hashtopus Project Hashtopus 1.5g
8.8
CVSSv3
CVE-2017-11679
Cross-Site Request Forgery (CSRF) exists in Hashtopus 1.5g via the password parameter to admin.php in an a=config action.
Hashtopus Project Hashtopus 1.5g
8.8
CVSSv3
CVE-2017-11678
SQL injection vulnerability in Hashtopus 1.5g allows remote authenticated users to execute arbitrary SQL commands via the format parameter in admin.php.
Hashtopus Project Hashtopus 1.5g
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started