Stay in touch

Get our research, blog and event invitations before everybody else!

Your data will stay confidential

High-Tech Bridge Security Advisories

While testing and developing various vulnerability detection algorithms of ImmuniWeb®, we discovered hundreds of vulnerabilities in the most popular commercial and open source web applications and frameworks:


559
Security Advisories
Released
357
Vendors
Released Patches
1073
Vulnerabilities
Fixed
MS Sharepoint
Horde
DynamicsCRM
Bonitasoft
OSCommerce
Zencart
OpenX
osCmax
SugarCRM
Magento
OrangeHRM
Mantis
Wordpress
Joomla
MODX
Bitrix

Search

CSRF, Authentication Bypass & RCE in GuppY Advisory ID: HTB23299
Last Change: March 2, 2016
Vulnerable Version: 5.01
Risk Level: High
RCE via CSRF in osCommerce Advisory ID: HTB23284
Last Change: February 17, 2016
Vulnerable Version: 2.3.4
Risk Level: Medium
RCE via CSRF in osCmax Advisory ID: HTB23285
Last Change: February 17, 2016
Vulnerable Version: 2.5.4
Risk Level: Medium
SQL Injection in Osclass Advisory ID: HTB23287
Last Change: February 17, 2016
Vulnerable Version: 3.5.9
Risk Level: High
SQL Injection in TestLink Advisory ID: HTB23288
Last Change: February 17, 2016
Vulnerable Version: 1.9.14
Risk Level: High
SSO Authentication Bypass and Website Takeover in DOKEOS Advisory ID: HTB23289
Last Change: February 17, 2016
Vulnerable Version: ce30
Risk Level: High
SQL Injection in webSPELL Advisory ID: HTB23291
Last Change: February 17, 2016
Vulnerable Version: 4.2.4
Risk Level: Medium
SQL Injection in WeBid Advisory ID: HTB23292
Last Change: February 17, 2016
Vulnerable Version: 1.1.2P2
Risk Level: High
Remote Code Execution in Exponent Advisory ID: HTB23290
Last Change: February 3, 2016
CVE Reference: CVE-2016-2242
Vulnerable Version: 2.3.7
Risk Level: Critical
Multiple SQL Injection Vulnerabilities in mcart.xls Bitrix Module Advisory ID: HTB23279
Last Change: January 13, 2016
CVE Reference: CVE-2015-8356
Vulnerable Version: 6.5.2
Risk Level: Medium