Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2013-6878
Cross-site scripting (XSS) vulnerability in the Mijosoft MijoSearch component 2.0.4 and previous versions for Joomla! allows remote malicious users to inject arbitrary web script or HTML via the query parameter to component/mijosearch/search.
Miwisoft Mijosearch
445
VMScore
CVE-2013-6879
The Mijosoft MijoSearch component 2.0.1 and previous versions for Joomla! allows remote malicious users to obtain sensitive information via a request to component/mijosearch/search, which reveals the installation path in an error message.
Miwisoft Mijosearch
578
VMScore
CVE-2015-1434
Multiple SQL injection vulnerabilities in my little forum prior to 2.3.4 allow remote administrators to execute arbitrary SQL commands via the (1) letter parameter in a user action or (2) edit_category parameter to index.php.
Mylittleforum My Little Forum
NA
CVE-2015-14352
My Little Forum version 2.3.3 suffers from cross site scripting and remote SQL injection vulnerabilities.
NA
CVE-2015-14361
WordPress Easing Slider plugin version 2.2.0.6 suffers from multiple cross site scripting vulnerabilities.
890
VMScore
CVE-2014-7985
Directory traversal vulnerability in EspoCRM prior to 2.6.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the action parameter to install/index.php.
Espocrm Espocrm
445
VMScore
CVE-2014-7986
install/index.php in EspoCRM prior to 2.6.0 allows remote malicious users to re-install the application via a 1 value in the installProcess parameter.
Espocrm Espocrm
383
VMScore
CVE-2014-7987
Cross-site scripting (XSS) vulnerability in EspoCRM prior to 2.6.0 allows remote malicious users to inject arbitrary web script or HTML via the desc parameter in an errors action to install/index.php.
Espocrm Espocrm
383
VMScore
CVE-2013-5744
Cross-site scripting (XSS) vulnerability in Feng Office 2.3.2-rc and previous versions allows remote malicious users to inject arbitrary web script or HTML via an arbitrary ref_XXX parameter.
Fengoffice Feng Office 2.3.1
Fengoffice Feng Office 2.3
Fengoffice Feng Office 2.1.0
Fengoffice Feng Office 1.7.1
Fengoffice Feng Office 1.7
Fengoffice Feng Office 2.2.3.1
Fengoffice Feng Office 2.2.2
Fengoffice Feng Office 2.2.1
Fengoffice Feng Office 2.0.0
Fengoffice Feng Office 1.7.5
Fengoffice Feng Office 2.3.2
Fengoffice Feng Office 2.2.4.1
Fengoffice Feng Office 2.2.4
Fengoffice Feng Office 2.2.0
Fengoffice Feng Office 1.7.4
Fengoffice Feng Office 1.7.2
Fengoffice Feng Office
Fengoffice Feng Office 2.3.1.1
Fengoffice Feng Office 1.7.3.1
Fengoffice Feng Office 1.6.2
570
VMScore
CVE-2013-5984
Directory traversal vulnerability in userfiles/modules/admin/backup/delete.php in Microweber prior to 0.830 allows remote malicious users to delete arbitrary files via a .. (dot dot) in the file parameter.
Microweber Microweber
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »