High-Tech Bridge Security Advisories are CVE Compatible    High-Tech Bridge Security Advisories CWE Compatibility    High-Tech Bridge Security Advisories CVSS Adopters
Vendor Statistics

286 software vendors have fixed 926 vulnerabilities in their products thanks to High-Tech Bridge Security Research Lab.

Patch Available Upon Disclosure

2014 Q1: 87%2013 Q2: 92%
2013 Q4: 67%2013 Q1: 100%
2013 Q3: 77%2012 Q4: 68%

Vendor Average Time to Patch

2014 Q1: 5 days 2013 Q2: 30 days
2013 Q4: 8 days 2013 Q1: 13 days
2013 Q3: 13 days 2012 Q4: 26 days
ImmuniWeb® by High-Tech Bridge


High-Tech Bridge Newsletter

Subscribe to our newsletter and receive some or all of our corporate news, invitations to security events or HTB Security Advisories – you choose what you want to receive.

Advisories by High-Tech Bridge Security Research Lab

Search Advisories by

CVE-ID:HTB-ID:Name:CWE-ID:
Improper Authentication in Burden Advisory ID: HTB23192
Last Change: January 8, 2014
CVE Reference: CVE-2013-7137
Vulnerable Version: 1.8
Risk Level: High

Path Traversal in eduTrac Advisory ID: HTB23190
Last Change: January 2, 2014
CVE Reference: CVE-2013-7097
Vulnerable Version: 1.1.1-Stable
Risk Level: Medium

Cross-Site Scripting (XSS) in Ad-minister Wordpress plugin Advisory ID: HTB23187
Last Change: December 26, 2013
CVE Reference: CVE-2013-6993
Vulnerable Version: 0.6
Risk Level: Low

Сross-Site Request Forgery (CSRF) in AskApache Firefox Adsense Wordpress plugin Advisory ID: HTB23188
Last Change: December 26, 2013
CVE Reference: CVE-2013-6992
Vulnerable Version: 3.0
Risk Level: Low

Cross-Site Scripting (XSS) in WP-Cron Dashboard Wordpress plugin Advisory ID: HTB23189
Last Change: December 26, 2013
CVE Reference: CVE-2013-6991
Vulnerable Version: 1.1.5
Risk Level: Low

XSS and Full Path Disclosure in MijoSearch Joomla Extension Advisory ID: HTB23186
Last Change: December 16, 2013
CVE References: CVE-2013-6878
CVE-2013-6879
Vulnerable Version: 2.0.1
Risk Level: Medium

User Identity Spoofing in Bitrix Site Manager Advisory ID: HTB23183
Last Change: December 11, 2013
CVE Reference: CVE-2013-6788
Vulnerable Version: 12.5.13
Risk Level: Medium

SQL Injection in InstantCMS Advisory ID: HTB23185
Last Change: December 11, 2013
CVE Reference: CVE-2013-6839
Vulnerable Version: 1.10.3
Risk Level: High

Cross-Site Scripting (XSS) in Jamroom Advisory ID: HTB23184
Last Change: December 4, 2013
CVE Reference: CVE-2013-6804
Vulnerable Version: 5.0.2
Risk Level: Medium

Multiple Cross-Site Scripting (XSS) in Claroline Advisory ID: HTB23179
Last Change: November 27, 2013
CVE Reference: CVE-2013-6267
Vulnerable Version: 1.11.8
Risk Level: Medium