Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4852
Cross-site scripting (XSS) vulnerability in login.php in Eclime 1.1.2b allows remote malicious users to inject arbitrary web script or HTML via the reason parameter in a fail action.
Eclime Eclime 1.1.2b
1 EDB exploit
NA
CVE-2010-4882
Cross-site scripting (XSS) vulnerability in autocms.php in Auto CMS 1.6 allows remote malicious users to inject arbitrary web script or HTML via the sitetitle parameter.
Ventics Auto Cms 1.6
1 EDB exploit
NA
CVE-2010-4963
SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote malicious users to execute arbitrary SQL commands via the order_by parameter.
Hulihanapplications Hulihan Bxr 0.6.8
1 EDB exploit
NA
CVE-2010-5025
Cross-site scripting (XSS) vulnerability in manage/main.php in CuteSITE CMS 1.2.3 and 1.5.0 allows remote malicious users to inject arbitrary web script or HTML via the fld_path parameter. NOTE: some of these details are obtained from third party information.
Cutesite Cutesite Cms 1.2.3
Cutesite Cutesite Cms 1.5.0
1 EDB exploit
NA
CVE-2010-5029
SQL injection vulnerability in index.php in Ecomat CMS 5.0 allows remote malicious users to execute arbitrary SQL commands via the show parameter in a web action.
Codefabrik Ecomat Cms 5.0
1 EDB exploit
NA
CVE-2010-5052
Cross-site scripting (XSS) vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote malicious users to inject arbitrary web script or HTML via the val[] parameter.
Get-simple Getsimple Cms 2.01
1 EDB exploit
NA
CVE-2010-4399
Directory traversal vulnerability in languages.inc.php in DynPG CMS 4.1.1 and 4.2.0, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the CHG_DYNPG_SET_LANGUAGE parameter to index.php. NOTE: some of these details are o...
Dynpg Dynpg 4.2.0
Dynpg Dynpg 4.1.1
1 EDB exploit
NA
CVE-2010-4400
SQL injection vulnerability in _rights.php in DynPG CMS 4.2.0 allows remote malicious users to execute arbitrary SQL commands via the giveRights_UserId parameter.
Dynpg Dynpg 4.2.0
1 EDB exploit
NA
CVE-2010-4401
languages.inc.php in DynPG CMS 4.2.0 allows remote malicious users to obtain sensitive information via a direct request, which reveals the installation path in an error message.
Dynpg Dynpg 4.2.0
1 EDB exploit
NA
CVE-2015-3986
Cross-site request forgery (CSRF) vulnerability in the TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress prior to 1.3.9.3 allows remote malicious users to hijack the authentication of administrators for requests that condu...
Thecartpress Thecartpress Ecommerce Shopping Cart
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »