Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
h-sphere vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-4448
Cross-site request forgery (CSRF) vulnerability in actions.php in Positive Software H-Sphere WebShell 4.3.10 allows remote malicious users to perform unauthorized actions as an administrator, including file deletion and creation, via a link or IMG tag to the (1) overkill, (2) fut...
Positive Software H-sphere 4.3.10
10
CVSSv2
CVE-2008-1049
Unspecified vulnerability in Parallels SiteStudio prior to 1.7.2, and 1.8.x prior to 1.8b, as used in Parallels H-Sphere 3.0 before Patch 9 and 2.5 before Patch 11, has unknown impact and attack vectors.
Positive Software Sitestudio 1.8
Positive Software H-sphere
Positive Software Sitestudio 1.7.1
10
CVSSv2
CVE-2007-2633
Directory traversal vulnerability in H-Sphere SiteStudio 1.6 allows remote malicious users to read, or include and execute, arbitrary local files via a .. (dot dot) in the template parameter.
Positive Software Sitestudio 1.6
6.8
CVSSv2
CVE-2005-1605
Cross-site scripting (XSS) vulnerability in the guestbook for SiteStudio 1.6 allows remote malicious users to inject arbitrary web script or HTML via the name field to (1) psoft.guestbook.GuestBookServ in Standalone Site Studio or (2) E-Guest_sign.pl in Integrated Site Studio wit...
Positive Software Sitestudio 1.6 Final
Positive Software Sitestudio 1.6 Patch 1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2