San Francisco: +1 (415) 635 3784  |  Geneva: +41 (22) 723 2424   |  
ImmuniWeb®: Login | Register

Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories


558
Security Advisories
Released
356
Vendors
Released Patches
1070
Vulnerabilities
Fixed

Search

RCE via CSRF in osCmax Advisory ID: HTB23285
Last Change: February 17, 2016
Vulnerable Version: 2.5.4
Risk Level: Medium
SQL Injection in Osclass Advisory ID: HTB23287
Last Change: February 17, 2016
Vulnerable Version: 3.5.9
Risk Level: High
SQL Injection in TestLink Advisory ID: HTB23288
Last Change: February 17, 2016
Vulnerable Version: 1.9.14
Risk Level: High
SSO Authentication Bypass and Website Takeover in DOKEOS Advisory ID: HTB23289
Last Change: February 17, 2016
Vulnerable Version: ce30
Risk Level: High
SQL Injection in webSPELL Advisory ID: HTB23291
Last Change: February 17, 2016
Vulnerable Version: 4.2.4
Risk Level: Medium
SQL Injection in WeBid Advisory ID: HTB23292
Last Change: February 17, 2016
Vulnerable Version: 1.1.2P2
Risk Level: High
Remote Code Execution in Exponent Advisory ID: HTB23290
Last Change: February 3, 2016
CVE Reference: CVE-2016-2242
Vulnerable Version: 2.3.7
Risk Level: Critical
Multiple SQL Injection Vulnerabilities in mcart.xls Bitrix Module Advisory ID: HTB23279
Last Change: January 13, 2016
CVE Reference: CVE-2015-8356
Vulnerable Version: 6.5.2
Risk Level: Medium
Remote Code Execution in Roundcube Advisory ID: HTB23283
Last Change: January 13, 2016
CVE Reference: CVE-2015-8770
Vulnerable Version: 1.1.3
Risk Level: Medium
SQL Injection in orion.extfeedbackform Bitrix Module Advisory ID: HTB23280
Last Change: December 16, 2015
CVE Reference: CVE-2015-8355
Vulnerable Version: 2.1.2
Risk Level: Medium