Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-24521
pragmaMx version 1.12.1 suffers from a cross site scripting vulnerability.
NA
CVE-2012-2762
SQL injection vulnerability in include/functions_trackbacks.inc.php in Serendipity 1.6.2 allows remote malicious users to execute arbitrary SQL commands via the url parameter to comment.php.
S9y Serendipity 1.5.3
S9y Serendipity 1.5.2
S9y Serendipity 1.1.4
S9y Serendipity 1.1.3
S9y Serendipity 1.0.1
S9y Serendipity 1.0
S9y Serendipity 0.8.1
S9y Serendipity 0.8
S9y Serendipity 1.5.5
S9y Serendipity 1.5.4
S9y Serendipity 1.2.1
S9y Serendipity 1.2
S9y Serendipity 1.0.3
S9y Serendipity 1.0.2
S9y Serendipity 0.8.3
S9y Serendipity 0.8.2
S9y Serendipity 1.5.1
S9y Serendipity 1.4.1
S9y Serendipity 1.1.2
S9y Serendipity 1.1.1
S9y Serendipity 0.9.1
S9y Serendipity 0.9
NA
CVE-2015-83501
WordPress Calls to Action plugin version 2.4.3 suffers from a cross site scripting vulnerability.
6.1
CVSSv3
CVE-2015-8353
Cross-site scripting (XSS) vulnerability in the Role Scoper plugin prior to 1.3.67 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the object_name parameter in a rs-object_role_edit page to wp-admin/admin.php.
Role Scoper Project Role Scoper
6.1
CVSSv3
CVE-2015-8354
Cross-site scripting (XSS) vulnerability in the Ultimate Member WordPress plugin prior to 1.3.29 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the _refer parameter to wp-admin/users.php.
Ultimatemember Ultimate Member
8.8
CVSSv3
CVE-2015-8355
Multiple SQL injection vulnerabilities in the orion.extfeedbackform module prior to 2.1.3 for Bitrix allow remote authenticated users to execute arbitrary SQL commands via the (1) order or (2) "by" parameter to admin/orion.extfeedbackform_efbf_forms.php.
Orion-soft Bitrix
NA
CVE-2013-4600
Multiple cross-site scripting (XSS) vulnerabilities in Alkacon OpenCms prior to 8.5.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) title parameter to system/workplace/views/admin/admin-main.jsp or the (2) requestedResource parameter to system/lo...
Alkacon Opencms 6.2.3
Alkacon Opencms 7.0.3
Alkacon Opencms 7.0.4
Alkacon Opencms
Alkacon Opencms 6.2
Alkacon Opencms 6.0.3
Alkacon Opencms 6.0.0
Alkacon Opencms 6.0.2
Alkacon Opencms 6.0.4
Alkacon Opencms 6.2.1
Alkacon Opencms 6.2.2
Alkacon Opencms 8.5
8.8
CVSSv3
CVE-2012-5693
Bulb Security Smartphone Pentest Framework (SPF) prior to 0.1.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in the ipAddressTB parameter to (1) remoteAttack.pl or (2) guessPassword.pl in frameworkgui/; the filename parameter to (3) CSAttac...
Bulbsecurity Smartphone Pentest Framework
NA
CVE-2012-5866
Cross-site scripting (XSS) vulnerability in include.php in Achievo 1.4.5 allows remote malicious users to inject arbitrary web script or HTML via the field parameter.
Achievo Achievo 1.4.5
NA
CVE-2012-58772
Nero MediaHome version 4.5.8.0 suffers from multiple denial of service vulnerabilities due to improper handling issues.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »