San Francisco: +1 (415) 635 3784  |  Geneva: +41 (22) 723 2424   |  
ImmuniWeb®: Login | Register

Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories

Security Advisories
Released Patches


SQL Injection in GLPI Advisory ID: HTB23301
Last Change: April 29, 2016
Vulnerable Version: 0.90.2
Risk Level: High
RCE via CSRF in phpMyFAQ Advisory ID: HTB23300
Last Change: April 20, 2016
Vulnerable Version: 2.8.26, 2.9.0-RC2
Risk Level: High
SQL Injection in SocialEngine Advisory ID: HTB23286
Last Change: April 6, 2016
Vulnerable Version: 4.8.9
Risk Level: High
Multiple Vulnerabilities in CubeCart Advisory ID: HTB23298
Last Change: March 30, 2016
Vulnerable Version: 6.0.10
Risk Level: Medium
Remote Code Execution via CSRF in iTop Advisory ID: HTB23293
Last Change: March 18, 2016
Vulnerable Version: 2.2.1
Risk Level: High
Admin Password Reset & RCE via CSRF in Dating Pro Advisory ID: HTB23294
Last Change: March 18, 2016
Vulnerable Version: Genie (2015.7)
Risk Level: Critical
SQL Injection and RCE in WebsiteBaker Advisory ID: HTB23296
Last Change: March 18, 2016
Vulnerable Version: 2.8.3-SP5
Risk Level: High
CSRF, Authentication Bypass & RCE in GuppY Advisory ID: HTB23299
Last Change: March 2, 2016
Vulnerable Version: 5.01
Risk Level: High
Arbitrary File Content Disclosure in Atutor Advisory ID: HTB23297
Last Change: February 24, 2016
Vulnerable Version: 2.2.1
Risk Level: Medium
RCE via CSRF in osCommerce Advisory ID: HTB23284
Last Change: February 17, 2016
Vulnerable Version: 2.3.4
Risk Level: Medium