Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-33004
WordPress TheCartPress plugin version 1.3.9 suffers from local file inclusion, improper access control, and cross site scripting vulnerabilities.
NA
CVE-2012-11881
Fork CMS version 3.2.5 suffers from multiple cross site scripting vulnerabilities.
NA
CVE-2014-4737
Cross-site scripting (XSS) vulnerability in Textpattern CMS prior to 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to setup/index.php.
Textpattern Textpattern 4.5.1
Textpattern Textpattern 4.5.2
Textpattern Textpattern 4.5.3
Textpattern Textpattern 4.5.4
Textpattern Textpattern
Textpattern Textpattern 4.5.0
NA
CVE-2013-5586
Cross-site scripting (XSS) vulnerability in wikka.php in WikkaWiki prior to 1.3.4-p1 allows remote malicious users to inject arbitrary web script or HTML via the wakka parameter to sql/.
Wikkawiki Wikkawiki 1.1.5.3
Wikkawiki Wikkawiki 1.1.5.2
Wikkawiki Wikkawiki 1.1.5.1
Wikkawiki Wikkawiki 1.1.3.5
Wikkawiki Wikkawiki 1.1.3.4
Wikkawiki Wikkawiki 1.0.6
Wikkawiki Wikkawiki 1.0.5
Wikkawiki Wikkawiki 1.1.6.5
Wikkawiki Wikkawiki 1.1.6.6
Wikkawiki Wikkawiki 1.1.6.2
Wikkawiki Wikkawiki 1.1.6.1
Wikkawiki Wikkawiki 1.1.3.9
Wikkawiki Wikkawiki 1.1.3.8
Wikkawiki Wikkawiki 1.1.3.1
Wikkawiki Wikkawiki 1.1.3
Wikkawiki Wikkawiki 1.1.6.0
Wikkawiki Wikkawiki 1.1.5.4
Wikkawiki Wikkawiki 1.1.3.7
Wikkawiki Wikkawiki 1.1.3.6
Wikkawiki Wikkawiki 1.1.2
Wikkawiki Wikkawiki 1.1.0
Wikkawiki Wikkawiki 1.0.0
6.1
CVSSv3
CVE-2015-8349
Cross-site scripting (XSS) vulnerability in SourceBans prior to 2.0 pre-alpha allows remote malicious users to inject arbitrary web script or HTML via the advSearch parameter to index.php.
Gameconnect Sourcebans
NA
CVE-2015-83501
WordPress Calls to Action plugin version 2.4.3 suffers from a cross site scripting vulnerability.
6.1
CVSSv3
CVE-2015-8353
Cross-site scripting (XSS) vulnerability in the Role Scoper plugin prior to 1.3.67 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the object_name parameter in a rs-object_role_edit page to wp-admin/admin.php.
Role Scoper Project Role Scoper
8.8
CVSSv3
CVE-2015-8355
Multiple SQL injection vulnerabilities in the orion.extfeedbackform module prior to 2.1.3 for Bitrix allow remote authenticated users to execute arbitrary SQL commands via the (1) order or (2) "by" parameter to admin/orion.extfeedbackform_efbf_forms.php.
Orion-soft Bitrix
NA
CVE-2014-7139
Multiple cross-site scripting (XSS) vulnerabilities in the Contact Form DB (aka CFDB and contact-form-7-to-database-extension) plugin prior to 2.8.16 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) form or (2) enc parameter in the CF7...
Cfdbplugin Contact Form Db
NA
CVE-2014-71821
WordPress WP Google Maps plugin version 6.0.26 suffers from a cross site scripting vulnerability.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2108
CVE-2024-31061
CVE-2024-25959
CVE-2023-45866
injection
IDOR
memory leak
CVE-2024-1086
CVE-2023-42931
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »