Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6991
Cross-site scripting (XSS) vulnerability in the WP-Cron Dashboard plugin 1.1.5 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the procname parameter to wp-admin/tools.php.
Wokamoto Wp-cron Dashboard 1.1.0
Wokamoto Wp-cron Dashboard
Wokamoto Wp-cron Dashboard 1.1.4
Wokamoto Wp-cron Dashboard 1.1.3
Wokamoto Wp-cron Dashboard 1.1.2
Wokamoto Wp-cron Dashboard 1.1.1
NA
CVE-2012-5866
Cross-site scripting (XSS) vulnerability in include.php in Achievo 1.4.5 allows remote malicious users to inject arbitrary web script or HTML via the field parameter.
Achievo Achievo 1.4.5
NA
CVE-2014-9571
Cross-site scripting (XSS) vulnerability in admin/install.php in MantisBT prior to 1.2.19 and 1.3.x prior to 1.3.0-beta.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) admin_username or (2) admin_password parameter.
Mantisbt Mantisbt 1.3.0
Mantisbt Mantisbt
NA
CVE-2014-9572
MantisBT prior to 1.2.19 and 1.3.x prior to 1.3.0-beta.2 does not properly restrict access to /*/install.php, which allows remote malicious users to obtain database credentials via the install parameter with the value 4.
Mantisbt Mantisbt 1.3.0
Mantisbt Mantisbt
NA
CVE-2014-07931
Joomla Komento extension version 1.7.2 suffers from a cross site scripting vulnerability.
NA
CVE-2015-1434
Multiple SQL injection vulnerabilities in my little forum prior to 2.3.4 allow remote administrators to execute arbitrary SQL commands via the (1) letter parameter in a user action or (2) edit_category parameter to index.php.
Mylittleforum My Little Forum
NA
CVE-2015-1435
Cross-site scripting (XSS) vulnerability in my little forum prior to 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via the back parameter to index.php.
Mylittleforum My Little Forum
NA
CVE-2015-1436
Cross-site scripting (XSS) vulnerability in the Easing Slider plugin prior to 2.2.0.7 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the edit parameter in the (1) easingslider_manage_customizations or (2) easingslider_edit_sliders page to w...
Easing Slider Project Easing Slider
NA
CVE-2014-2988
EGroupware Enterprise Line (EPL) prior to 1.1.20140505, EGroupware Community Edition prior to 1.8.007.20140506, and EGroupware prior to 14.1 beta allows remote authenticated administrators to execute arbitrary PHP code via crafted callback values to the call_user_func PHP functio...
Egroupware Egroupware
NA
CVE-2014-31191
web2Project version 3.1 suffers from a remote SQL injection vulnerability.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »