Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories

Security Advisories
Released Patches


Multiple RCEs via CSRF in Dolibarr Advisory ID: HTB23302
Last Change: October 2, 2016
Vulnerable Version: 3.9.2
Risk Level: High
Multiple SQL Injections in Open Source Bike Share Advisory ID: HTB23271
Last Change: September 27, 2016
CVE Reference: Assigned [To be disclosed on November 2, 2016]
Vulnerable Version: 16.09.15
Risk Level: High
Arbitrary File Content Disclosure in Atutor Advisory ID: HTB23297
Last Change: August 2, 2016
Vulnerable Version: 2.2.1
Risk Level: Medium
SQL Injection in GLPI Advisory ID: HTB23301
Last Change: April 29, 2016
Vulnerable Version: 0.90.2
Risk Level: High
RCE via CSRF in phpMyFAQ Advisory ID: HTB23300
Last Change: April 20, 2016
Vulnerable Version: 2.8.26, 2.9.0-RC2
Risk Level: High
SQL Injection in SocialEngine Advisory ID: HTB23286
Last Change: April 6, 2016
Vulnerable Version: 4.8.9
Risk Level: High
Multiple Vulnerabilities in CubeCart Advisory ID: HTB23298
Last Change: March 30, 2016
Vulnerable Version: 6.0.10
Risk Level: Medium
Remote Code Execution via CSRF in iTop Advisory ID: HTB23293
Last Change: March 18, 2016
Vulnerable Version: 2.2.1
Risk Level: High
Admin Password Reset & RCE via CSRF in Dating Pro Advisory ID: HTB23294
Last Change: March 18, 2016
Vulnerable Version: Genie (2015.7)
Risk Level: Critical
SQL Injection and RCE in WebsiteBaker Advisory ID: HTB23296
Last Change: March 18, 2016
Vulnerable Version: 2.8.3-SP5
Risk Level: High