San Francisco: +1 (415) 635 3784  |  Geneva: +41 (22) 723 2424   |  
ImmuniWeb®: Login | Register
ImmuniWeb® by High-Tech Bridge


High-Tech Bridge Newsletter

Subscribe to our newsletter and receive some or all of our corporate news, invitations to security events or HTB Security Advisories – you choose what you want to receive.

High-Tech Bridge Security Advisories

Almost every week High-Tech Bridge's security experts discover new vulnerabilities in popular software, helping software companies and vendors to improve security and reliability of their products. Above 300 major vendors fixed security vulnerabilities thanks to High-Tech Bridge's security advisories:



526 Security Advisories
Released
334 Vendors
Released Patches
1036 Vulnerabilities
Fixed

Search

Reflected Cross-Site Scripting (XSS) in iTop Advisory ID: HTB23268
Last Change: July 30, 2015
Vulnerable Version: 2.1.0-2127
Risk Level: Medium

Cross-Site Scripting (XSS) in qTranslate WordPress Plugin Advisory ID: HTB23265
Last Change: July 29, 2015
CVE Reference: CVE-2015-5535
Vulnerable Version: 2.5.39
Risk Level: Medium

Multiple XSS Vulnerabilities in Paid Memberships Pro WordPress Plugin Advisory ID: HTB23264
Last Change: July 22, 2015
CVE Reference: CVE-2015-5532
Vulnerable Version: 1.8.4.2
Risk Level: Medium

SQL Injection in Count Per Day WordPress Plugin Advisory ID: HTB23267
Last Change: July 22, 2015
CVE Reference: CVE-2015-5533
Vulnerable Version: 3.4
Risk Level: Medium

Path Traversal in BlackCat CMS Advisory ID: HTB23263
Last Change: July 1, 2015
CVE Reference: CVE-2015-5079
Vulnerable Version: 1.1.1
Risk Level: High

Cross-Site Request Forgery on Oxwall Advisory ID: HTB23266
Last Change: July 1, 2015
CVE Reference: Assigned [To be disclosed on October 14, 2015]
Vulnerable Version: 1.7.4
Risk Level: Medium

Reflected Cross-Site Scripting (XSS) in SearchBlox Advisory ID: HTB23256
Last Change: June 17, 2015
CVE Reference: CVE-2015-3422
Vulnerable Version: 8.2
Risk Level: Low

OS Command Injection in Vesta Control Panel Advisory ID: HTB23261
Last Change: June 17, 2015
CVE Reference: CVE-2015-4117
Vulnerable Version: 0.9.8
Risk Level: Critical

Arbitrary File Disclosure and Open Redirect in Bonita BPM Advisory ID: HTB23259
Last Change: June 10, 2015
CVE References: CVE-2015-3897
CVE-2015-3898
Vulnerable Version: 6.5.1 and probably prior
Risk Level: High

Multiple Vulnerabilities in ISPConfig Advisory ID: HTB23260
Last Change: June 10, 2015
CVE References: CVE-2015-4118
CVE-2015-4119
Vulnerable Version: 3.0.5.4p6
Risk Level: High