San Francisco: +1 (415) 635 3784  |  Geneva: +41 (22) 723 2424   |  
ImmuniWeb®: Login | Register
ImmuniWeb® by High-Tech Bridge

Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories


552
Security Advisories
Released
351
Vendors
Released Patches
1057
Vulnerabilities
Fixed

Search

SQL Injection in webSPELL Advisory ID: HTB23291
Last Change: February 12, 2016
Vulnerable Version: 4.2.4
Risk Level: Medium

SQL Injection in WeBid Advisory ID: HTB23292
Last Change: February 12, 2016
Vulnerable Version: 1.1.2P2
Risk Level: High

Admin Password Reset via CSRF in Dating Pro Advisory ID: HTB23294
Last Change: February 10, 2016
Vulnerable Version: PZQ581DPT0
Risk Level: Medium

Remote Code Execution via CSRF in iTop Advisory ID: HTB23293
Last Change: February 10, 2016
Vulnerable Version: 2.2.1
Risk Level: High

Remote Code Execution in Exponent Advisory ID: HTB23290
Last Change: February 3, 2016
CVE Reference: CVE-2016-2242
Vulnerable Version: 2.3.7
Risk Level: Critical

SQL Injection in TestLink Advisory ID: HTB23288
Last Change: January 28, 2016
Vulnerable Version: 1.9.14
Risk Level: High

Authentication Bypass in DOKEOS Advisory ID: HTB23289
Last Change: January 28, 2016
Vulnerable Version: ce30
Risk Level: High

RCE and CSRF in osCommerce Advisory ID: HTB23284
Last Change: January 27, 2016
Vulnerable Version: 2.3.4
Risk Level: Medium

RCE and CSRF in osCmax Advisory ID: HTB23285
Last Change: January 27, 2016
Vulnerable Version: 2.5.4
Risk Level: Medium

SQL Injection in Osclass Advisory ID: HTB23287
Last Change: January 27, 2016
Vulnerable Version: 3.5.9
Risk Level: High