Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2013-6878
Cross-site scripting (XSS) vulnerability in the Mijosoft MijoSearch component 2.0.4 and previous versions for Joomla! allows remote malicious users to inject arbitrary web script or HTML via the query parameter to component/mijosearch/search.
Miwisoft Mijosearch
5.3
CVSSv3
CVE-2013-6879
The Mijosoft MijoSearch component 2.0.1 and previous versions for Joomla! allows remote malicious users to obtain sensitive information via a request to component/mijosearch/search, which reveals the installation path in an error message.
Miwisoft Mijosearch
NA
CVE-2015-1434
Multiple SQL injection vulnerabilities in my little forum prior to 2.3.4 allow remote administrators to execute arbitrary SQL commands via the (1) letter parameter in a user action or (2) edit_category parameter to index.php.
Mylittleforum My Little Forum
NA
CVE-2015-1435
Cross-site scripting (XSS) vulnerability in my little forum prior to 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via the back parameter to index.php.
Mylittleforum My Little Forum
9.8
CVSSv3
CVE-2014-8337
Unrestricted file upload vulnerability in includes/classes/uploadify-v2.1.4/uploadify.php in HelpDEZk 1.0.1 and previous versions allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to th...
Helpdezk Helpdezk
NA
CVE-2012-16641
osCmax version 2.5.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
NA
CVE-2012-16652
osCmax version 2.5.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
NA
CVE-2012-24361
Pligg CMS version 1.2.1 suffers from cross site scripting and local file inclusion vulnerabilities.
NA
CVE-2014-2988
EGroupware Enterprise Line (EPL) prior to 1.1.20140505, EGroupware Community Edition prior to 1.8.007.20140506, and EGroupware prior to 14.1 beta allows remote authenticated administrators to execute arbitrary PHP code via crafted callback values to the call_user_func PHP functio...
Egroupware Egroupware
NA
CVE-2015-33004
WordPress TheCartPress plugin version 1.3.9 suffers from local file inclusion, improper access control, and cross site scripting vulnerabilities.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »