Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-3647
Multiple cross-site scripting (XSS) vulnerabilities in wppa-ajax-front.php in the WP Photo Album Plus (aka WPPA) plugin prior to 6.1.3 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) comemail or (2) comname parameter in a wppa do-comm...
Wppa.opajaap Wp-photo-album-plus
7.5
CVSSv2
CVE-2015-3648
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace prior to 7.2.6727 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the defaultlanguage parameter.
Montala Resourcespace
2.6
CVSSv2
CVE-2014-3737
Cross-site scripting (XSS) vulnerability in templates/defaultheader.php in Lamp Design Storesprite prior to 7 - 19-06-14, when using the currency selection dropdown, allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to brand.php, related to th...
Storesprite Storesprite
6.5
CVSSv2
CVE-2014-3810
SQL injection vulnerability in administration/profiles.php in BoonEx Dolphin 7.1.4 and previous versions allows remote authenticated administrators to execute arbitrary SQL commands via the members[] parameter. NOTE: this can be exploited by remote attackers by leveraging CVE-201...
Boonex Dolphin
Boonex Dolphin 7.1.3
Boonex Dolphin 7.0.8
Boonex Dolphin 7.0.7
Boonex Dolphin 7.0.1
Boonex Dolphin 7.0.0
Boonex Dolphin 7.1.0
Boonex Dolphin 7.0.4
Boonex Dolphin 7.0.3
Boonex Dolphin 7.0.9
Boonex Dolphin 7.0.2
Boonex Dolphin 7.1.2
Boonex Dolphin 7.1.1
Boonex Dolphin 7.0.6
Boonex Dolphin 7.0.5
6.8
CVSSv2
CVE-2012-5450
Cross-site request forgery (CSRF) vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) 1.11.2 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that delete arbitrary files via the deld pa...
Cmsmadesimple Cms Made Simple 1.9.3
Cmsmadesimple Cms Made Simple 1.9.4
Cmsmadesimple Cms Made Simple 1.8.2
Cmsmadesimple Cms Made Simple 1.9
Cmsmadesimple Cms Made Simple 1.6.6
Cmsmadesimple Cms Made Simple 1.5.4
Cmsmadesimple Cms Made Simple
Cmsmadesimple Cms Made Simple 1.9.1
Cmsmadesimple Cms Made Simple 1.1.3
Cmsmadesimple Cms Made Simple 1.6.7
Cmsmadesimple Cms Made Simple 1.6.3
Cmsmadesimple Cms Made Simple 1.5
Cmsmadesimple Cms Made Simple 1.5.1
Cmsmadesimple Cms Made Simple 1.2.3
Cmsmadesimple Cms Made Simple 1.2.1
Cmsmadesimple Cms Made Simple 1.7.1
Cmsmadesimple Cms Made Simple 1.8.1
Cmsmadesimple Cms Made Simple 1.1
Cmsmadesimple Cms Made Simple 0.1
Cmsmadesimple Cms Made Simple 0.7.2
Cmsmadesimple Cms Made Simple 0.7.1
Cmsmadesimple Cms Made Simple 0.5
NA
CVE-2014-14011
AuraCMS version 2.3 suffers from a remote SQL injection vulnerability.
NA
CVE-2012-42312
jCore version 1.0pre suffers from cross site scripting and remote SQL injection vulnerabilities.
7.5
CVSSv2
CVE-2012-4232
SQL injection vulnerability in admin/index.php in jCore prior to 1.0pre2 allows remote malicious users to execute arbitrary SQL commands via the memberloginid cookie.
Jcore Jcore
NA
CVE-2012-42321
jCore version 1.0pre suffers from cross site scripting and remote SQL injection vulnerabilities.
4.3
CVSSv2
CVE-2014-1855
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel prior to 3.5.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) capcheck parameter to directories.php or (2) keyword parameter to proxy.php.
Seopanel Seo Panel 3.3.1
Seopanel Seo Panel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »