Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories

While testing and developing various vulnerability detection algorithms of ImmuniWeb®, we discovered hundreds of vulnerabilities in the most popular commercial and open source web applications and frameworks:


559
Security Advisories
Released
357
Vendors
Released Patches
1073
Vulnerabilities
Fixed
MS Sharepoint
Horde
DynamicsCRM
Bonitasoft
OSCommerce
Zencart
OpenX
osCmax
SugarCRM
Magento
OrangeHRM
Mantis
Wordpress
Joomla
MODX
Bitrix

Search

Admin Password Reset & RCE via CSRF in Dating Pro Advisory ID: HTB23294
Last Change: March 18, 2016
Vulnerable Version: Genie (2015.7)
Risk Level: Critical
SQL Injection and RCE in WebsiteBaker Advisory ID: HTB23296
Last Change: March 18, 2016
Vulnerable Version: 2.8.3-SP5
Risk Level: High
RCE via CSRF in osCommerce Advisory ID: HTB23284
Last Change: February 17, 2016
Vulnerable Version: 2.3.4
Risk Level: Medium
RCE via CSRF in osCmax Advisory ID: HTB23285
Last Change: February 17, 2016
Vulnerable Version: 2.5.4
Risk Level: Medium
SQL Injection in Osclass Advisory ID: HTB23287
Last Change: February 17, 2016
Vulnerable Version: 3.5.9
Risk Level: High
SQL Injection in TestLink Advisory ID: HTB23288
Last Change: February 17, 2016
Vulnerable Version: 1.9.14
Risk Level: High
SSO Authentication Bypass and Website Takeover in DOKEOS Advisory ID: HTB23289
Last Change: February 17, 2016
Vulnerable Version: ce30
Risk Level: High
SQL Injection in webSPELL Advisory ID: HTB23291
Last Change: February 17, 2016
Vulnerable Version: 4.2.4
Risk Level: Medium
SQL Injection in WeBid Advisory ID: HTB23292
Last Change: February 17, 2016
Vulnerable Version: 1.1.2P2
Risk Level: High
Remote Code Execution in Exponent Advisory ID: HTB23290
Last Change: February 3, 2016
CVE Reference: CVE-2016-2242
Vulnerable Version: 2.3.7
Risk Level: Critical