Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-62671
Claroline version 1.11.8 suffers from multiple cross site scripting vulnerabilities.
NA
CVE-2013-6993
Cross-site scripting (XSS) vulnerability in the Ad-minister plugin 0.6 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the key parameter in a delete action to wp-admin/tools.php.
Ad-minister Project Ad-minister 0.4.3
Ad-minister Project Ad-minister 0.4.2
Ad-minister Project Ad-minister 0.4.1
Ad-minister Project Ad-minister 0.5
Ad-minister Project Ad-minister 0.4.4
Ad-minister Project Ad-minister
Ad-minister Project Ad-minister 0.5.2
NA
CVE-2014-9570
Multiple cross-site scripting (XSS) vulnerabilities in the MyWebsiteAdvisor Simple Security plugin 1.1.5 and previous versions for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) datefilter parameter in the access_log page to wp-admin/use...
Mywebsiteadvisor Simple Security 1.1.5
NA
CVE-2014-9571
Cross-site scripting (XSS) vulnerability in admin/install.php in MantisBT prior to 1.2.19 and 1.3.x prior to 1.3.0-beta.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) admin_username or (2) admin_password parameter.
Mantisbt Mantisbt 1.3.0
Mantisbt Mantisbt
NA
CVE-2014-9573
SQL injection vulnerability in manage_user_page.php in MantisBT prior to 1.2.19 and 1.3.x prior to 1.3.0-beta.2 allows remote administrators with FILE privileges to execute arbitrary SQL commands via the MANTIS_MANAGE_USERS_COOKIE cookie.
Mantisbt Mantisbt
Mantisbt Mantisbt 1.3.0
NA
CVE-2014-62421
WordPress All In One WP Security plugin version 3.8.2 suffers from multiple remote SQL injection vulnerabilities.
6.1
CVSSv3
CVE-2015-2690
Multiple cross-site scripting (XSS) vulnerabilities in views/add-license-form.php in the Digium Addons module (digiumaddoninstaller) prior to 2.11.0.7 for FreePBX allow remote malicious users to inject arbitrary web script or HTML via the (1) add_license_key, (2) add_license_firs...
Digium Addons Module 2.11.0.6
NA
CVE-2012-38051
Kajona version 3.4.1 suffers from multiple cross site scripting vulnerabilities.
8.8
CVSSv3
CVE-2014-1946
OpenDocMan 1.2.7 and previous versions does not properly validate allowed actions, which allows remote authenticated users to bypass an intended access restrictions and assign administrative privileges to themselves via a crafted request to signup.php.
Opendocman Opendocman
NA
CVE-2013-6168
Cross-site scripting (XSS) vulnerability in Zikula Application Framework prior to 1.3.6 allows remote malicious users to inject arbitrary web script or HTML via the returnpage parameter to index.php.
Zikula Zikula Application Framework 1.3.2
Zikula Zikula Application Framework 1.3.1
Zikula Zikula Application Framework 1.3.0
Zikula Zikula Application Framework
Zikula Zikula Application Framework 1.3.4
Zikula Zikula Application Framework 1.3.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »