Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-5098
Cross-site scripting (XSS) vulnerability in the Search module prior to 1.2.2 in Jamroom allows remote malicious users to inject arbitrary web script or HTML via the query string to search/results/.
Jamroom Search Module
4.3
CVSSv2
CVE-2014-7138
Cross-site scripting (XSS) vulnerability in the Google Calendar Events plugin prior to 2.0.4 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the gce_feed_ids parameter in a gce_ajax action to wp-admin/admin-ajax.php.
Google Calendar Events Project Google Calendar Events
4.3
CVSSv2
CVE-2014-7139
Multiple cross-site scripting (XSS) vulnerabilities in the Contact Form DB (aka CFDB and contact-form-7-to-database-extension) plugin prior to 2.8.16 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) form or (2) enc parameter in the CF7...
Cfdbplugin Contact Form Db
4.3
CVSSv2
CVE-2015-8349
Cross-site scripting (XSS) vulnerability in SourceBans prior to 2.0 pre-alpha allows remote malicious users to inject arbitrary web script or HTML via the advSearch parameter to index.php.
Gameconnect Sourcebans
6
CVSSv2
CVE-2014-9573
SQL injection vulnerability in manage_user_page.php in MantisBT prior to 1.2.19 and 1.3.x prior to 1.3.0-beta.2 allows remote administrators with FILE privileges to execute arbitrary SQL commands via the MANTIS_MANAGE_USERS_COOKIE cookie.
Mantisbt Mantisbt
Mantisbt Mantisbt 1.3.0
4.3
CVSSv2
CVE-2013-6804
Cross-site scripting (XSS) vulnerability in the Search module prior to 1.1.1 for Jamroom allows remote malicious users to inject arbitrary web script or HTML via the search_string parameter to search/results/all/1/4.
Jamroom Search Module 1.0.0
Jamroom Search Module
4.3
CVSSv2
CVE-2013-6878
Cross-site scripting (XSS) vulnerability in the Mijosoft MijoSearch component 2.0.4 and previous versions for Joomla! allows remote malicious users to inject arbitrary web script or HTML via the query parameter to component/mijosearch/search.
Miwisoft Mijosearch
NA
CVE-2012-19331
Newscoop version 3.5.3 suffers from cross site scripting, remote file inclusion, and remote SQL injection vulnerabilities.
NA
CVE-2013-46241
Jahia xCM version 6.6.1.0 r43343 suffers from multiple cross site scripting vulnerabilities.
NA
CVE-2014-62421
WordPress All In One WP Security plugin version 3.8.2 suffers from multiple remote SQL injection vulnerabilities.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »