Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-22081
Piwigo version 2.3.3 suffers from cross site scripting and directory traversal vulnerabilities.
NA
CVE-2012-2435
Directory traversal vulnerability in the captcha module in Pligg CMS prior to 1.2.2 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the captcha parameter to module.php, as demonstrated by cross-site request forgery (CSRF) attac...
Pligg Pligg Cms 9.9.5
Pligg Pligg Cms 1.0.3
Pligg Pligg Cms 1.0.4
Pligg Pligg Cms 1.0.2
Pligg Pligg Cms 1.0.0
Pligg Pligg Cms 9.9.0
Pligg Pligg Cms
Pligg Pligg Cms 1.0.1
Pligg Pligg Cms 9.5
Pligg Pligg Cms 1.1.0
Pligg Pligg Cms 1.2.0
Pligg Pligg Cms 1.1.5
Pligg Pligg Cms 1.1.4
Pligg Pligg Cms 9.9
Pligg Pligg Cms 1.1.3
Pligg Pligg Cms 1.1.2
NA
CVE-2012-3231
Multiple cross-site request forgery (CSRF) vulnerabilities in web@all 2.0, as downloaded before May 30, 2012, allow remote malicious users to hijack the authentication of administrators for requests that add, delete, or modify sensitive information, as demonstrated by adding a fi...
Webatall Web\\@all 2.0
NA
CVE-2012-32322
Web@All version 2.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
NA
CVE-2014-1855
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel prior to 3.5.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) capcheck parameter to directories.php or (2) keyword parameter to proxy.php.
Seopanel Seo Panel 3.3.1
Seopanel Seo Panel
NA
CVE-2014-9571
Cross-site scripting (XSS) vulnerability in admin/install.php in MantisBT prior to 1.2.19 and 1.3.x prior to 1.3.0-beta.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) admin_username or (2) admin_password parameter.
Mantisbt Mantisbt 1.3.0
Mantisbt Mantisbt
NA
CVE-2014-3737
Cross-site scripting (XSS) vulnerability in templates/defaultheader.php in Lamp Design Storesprite prior to 7 - 19-06-14, when using the currency selection dropdown, allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to brand.php, related to th...
Storesprite Storesprite
NA
CVE-2014-3810
SQL injection vulnerability in administration/profiles.php in BoonEx Dolphin 7.1.4 and previous versions allows remote authenticated administrators to execute arbitrary SQL commands via the members[] parameter. NOTE: this can be exploited by remote attackers by leveraging CVE-201...
Boonex Dolphin
Boonex Dolphin 7.1.3
Boonex Dolphin 7.0.8
Boonex Dolphin 7.0.7
Boonex Dolphin 7.0.1
Boonex Dolphin 7.0.0
Boonex Dolphin 7.1.0
Boonex Dolphin 7.0.4
Boonex Dolphin 7.0.3
Boonex Dolphin 7.0.9
Boonex Dolphin 7.0.2
Boonex Dolphin 7.1.2
Boonex Dolphin 7.1.1
Boonex Dolphin 7.0.6
Boonex Dolphin 7.0.5
NA
CVE-2014-3920
Cross-site request forgery (CSRF) vulnerability in Kanboard prior to 1.0.6 allows remote malicious users to hijack the authentication of administrators for requests that add an administrative user via a save action to the default URI.
Kanboard Kanboard
Kanboard Kanboard 1.0.5
Kanboard Kanboard 1.0.4
Kanboard Kanboard 1.0.1
Kanboard Kanboard 1.0.0
Kanboard Kanboard 1.0.3
Kanboard Kanboard 1.0.2
6.1
CVSSv3
CVE-2012-10003
A vulnerability, which was classified as problematic, has been found in ahmyi RivetTracker. This issue affects some unknown processing. The manipulation of the argument $_SERVER['PHP_SELF'] leads to cross site scripting. The attack may be initiated remotely. The patch i...
Rivettracker Project Rivettracker
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »