Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-3920
Cross-site request forgery (CSRF) vulnerability in Kanboard prior to 1.0.6 allows remote malicious users to hijack the authentication of administrators for requests that add an administrative user via a save action to the default URI.
Kanboard Kanboard
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
NA
CVE-2014-2219
Cross-site scripting (XSS) vulnerability in whizzywig/wb.php in CMSimple Classic 3.54 and previous versions, possibly as downloaded before February 26, 2014, allows remote malicious users to inject arbitrary web script or HTML via the d parameter.
Cmsimple Cmsimple Classic
NA
CVE-2014-5098
Cross-site scripting (XSS) vulnerability in the Search module prior to 1.2.2 in Jamroom allows remote malicious users to inject arbitrary web script or HTML via the query string to search/results/.
Jamroom Search Module
9.8
CVSSv3
CVE-2016-2242
Exponent CMS 2.x prior to 2.3.7 Patch 3 allows remote malicious users to execute arbitrary code via the sc parameter to install/index.php.
Exponentcms Exponent Cms 2.3.5
Exponentcms Exponent Cms 2.3.1
Exponentcms Exponent Cms 2.2.1
Exponentcms Exponent Cms 2.2.0
Exponentcms Exponent Cms 2.0.9
Exponentcms Exponent Cms 2.0.5
Exponentcms Exponent Cms 2.0.4
Exponentcms Exponent Cms 2.3.3
Exponentcms Exponent Cms 2.2.3
Exponentcms Exponent Cms 2.1.3
Exponentcms Exponent Cms 2.1.2
Exponentcms Exponent Cms 2.0.7
Exponentcms Exponent Cms 2.0.6
Exponentcms Exponent Cms 2.0.2
Exponentcms Exponent Cms 2.0.1
Exponentcms Exponent Cms 2.3.7
Exponentcms Exponent Cms 2.3.2
Exponentcms Exponent Cms 2.2.2
Exponentcms Exponent Cms 2.1.1
Exponentcms Exponent Cms 2.1.0
Exponentcms Exponent Cms 2.0.0
Exponentcms Exponent Cms 2.3.8
NA
CVE-2012-2762
SQL injection vulnerability in include/functions_trackbacks.inc.php in Serendipity 1.6.2 allows remote malicious users to execute arbitrary SQL commands via the url parameter to comment.php.
S9y Serendipity 1.5.3
S9y Serendipity 1.5.2
S9y Serendipity 1.1.4
S9y Serendipity 1.1.3
S9y Serendipity 1.0.1
S9y Serendipity 1.0
S9y Serendipity 0.8.1
S9y Serendipity 0.8
S9y Serendipity 1.5.5
S9y Serendipity 1.5.4
S9y Serendipity 1.2.1
S9y Serendipity 1.2
S9y Serendipity 1.0.3
S9y Serendipity 1.0.2
S9y Serendipity 0.8.3
S9y Serendipity 0.8.2
S9y Serendipity 1.5.1
S9y Serendipity 1.4.1
S9y Serendipity 1.1.2
S9y Serendipity 1.1.1
S9y Serendipity 0.9.1
S9y Serendipity 0.9
NA
CVE-2012-42312
jCore version 1.0pre suffers from cross site scripting and remote SQL injection vulnerabilities.
NA
CVE-2012-42321
jCore version 1.0pre suffers from cross site scripting and remote SQL injection vulnerabilities.
NA
CVE-2012-47712
Subrion CMS version 2.2.1 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
NA
CVE-2012-11881
Fork CMS version 3.2.5 suffers from multiple cross site scripting vulnerabilities.
NA
CVE-2012-18351
WordPress All-In-One Event Calendar plugin version 1.4 suffers from multiple cross site scripting vulnerabilities.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »