Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2015-8350
Multiple cross-site scripting (XSS) vulnerabilities in the Calls to Action plugin prior to 2.5.1 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) open-tab parameter in a wp_cta_global_settings action to wp-admin/edit.php or (2) wp-cta-...
Inboundnow Call To Action
6.1
CVSSv3
CVE-2015-8354
Cross-site scripting (XSS) vulnerability in the Ultimate Member WordPress plugin prior to 1.3.29 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the _refer parameter to wp-admin/users.php.
Ultimatemember Ultimate Member
6.1
CVSSv3
CVE-2015-5532
Multiple cross-site scripting (XSS) vulnerabilities in the Paid Memberships Pro (PMPro) plugin prior to 1.8.4.3 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) s parameter to membershiplevels.php, (2) memberslist.php, or (3) orders.ph...
Strangerstudios Paid Memberships Pro
NA
CVE-2015-55321
WordPress Paid Memberships Pro plugin version 1.8.4.2 suffers from a cross site scripting vulnerability.
NA
CVE-2015-5535
Cross-site scripting (XSS) vulnerability in the qTranslate plugin 2.5.39 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the edit parameter in the qtranslate page to wp-admin/options-general.php.
Qtranslate Project Qtranslate
NA
CVE-2014-2654
Multiple SQL injection vulnerabilities in MobFox mAdserve 2.0 and previous versions allow remote authenticated users to execute arbitrary SQL commands via the id parameter to (1) edit_ad_unit.php, (2) view_adunits.php, or (3) edit_campaign.php in www/cp/.
Mobfox Madserve
NA
CVE-2014-26541
MobFox mAdserver version 2.0 suffers from a remote SQL injection vulnerability.
NA
CVE-2014-2689
Cross-site scripting (XSS) vulnerability in Offiria 2.1.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to installer/index.php.
Slashes\\&dots Offria
NA
CVE-2014-8539
Cross-site scripting (XSS) vulnerability in Simple Email Form 1.8.5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the mod_simpleemailform_field2_1 parameter to index.php.
Simple Email Form Project Simple Email Form
NA
CVE-2013-46001
OpenCMS version 8.5.1 suffers from a cross site scripting vulnerability.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »