Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-3295
Directory traversal vulnerability in install/popup.php in Exponent CMS prior to 2.2.0 RC1 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Exponentcms Exponent Cms
NA
CVE-2014-4735
Cross-site scripting (XSS) vulnerability in MyWebSQL 3.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the table parameter to index.php.
Mywebsql Mywebsql 3.0
Mywebsql Mywebsql
Mywebsql Mywebsql 3.3
Mywebsql Mywebsql 3.2
Mywebsql Mywebsql 3.1
NA
CVE-2014-19062
VideoWhisper Live Streaming Integration version 4.27.3 suffers from cross site scripting, remote shell upload, information exposure, and path traversal vulnerabilities.
NA
CVE-2014-19084
VideoWhisper Live Streaming Integration version 4.27.3 suffers from cross site scripting, remote shell upload, information exposure, and path traversal vulnerabilities.
8.8
CVSSv3
CVE-2014-1946
OpenDocMan 1.2.7 and previous versions does not properly validate allowed actions, which allows remote authenticated users to bypass an intended access restrictions and assign administrative privileges to themselves via a crafted request to signup.php.
Opendocman Opendocman
NA
CVE-2014-2024
Cross-site scripting (XSS) vulnerability in classes/controller/error.php in Open Classifieds 2 prior to 2.1.3 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to shared-apartments-rooms/.
Openclassifieds Open Classifieds 2 2.0.4
Openclassifieds Open Classifieds 2 2.0.5
Openclassifieds Open Classifieds 2 2.0.2
Openclassifieds Open Classifieds 2 2.0.3
Openclassifieds Open Classifieds 2 2.1.1
Openclassifieds Open Classifieds 2
Openclassifieds Open Classifieds 2 2.0.6
Openclassifieds Open Classifieds 2 2.0.7
Openclassifieds Open Classifieds 2 2.0
Openclassifieds Open Classifieds 2 2.0.1
Openclassifieds Open Classifieds 2 2.0.8
Openclassifieds Open Classifieds 2 2.1
NA
CVE-2014-2219
Cross-site scripting (XSS) vulnerability in whizzywig/wb.php in CMSimple Classic 3.54 and previous versions, possibly as downloaded before February 26, 2014, allows remote malicious users to inject arbitrary web script or HTML via the d parameter.
Cmsimple Cmsimple Classic
NA
CVE-2015-3648
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace prior to 7.2.6727 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the defaultlanguage parameter.
Montala Resourcespace
NA
CVE-2015-3647
Multiple cross-site scripting (XSS) vulnerabilities in wppa-ajax-front.php in the WP Photo Album Plus (aka WPPA) plugin prior to 6.1.3 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) comemail or (2) comname parameter in a wppa do-comm...
Wppa.opajaap Wp-photo-album-plus
8.8
CVSSv3
CVE-2012-5693
Bulb Security Smartphone Pentest Framework (SPF) prior to 0.1.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in the ipAddressTB parameter to (1) remoteAttack.pl or (2) guessPassword.pl in frameworkgui/; the filename parameter to (3) CSAttac...
Bulbsecurity Smartphone Pentest Framework
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »