San Francisco: +1 (415) 635 3784  |  Geneva: +41 (22) 723 2424   |  
ImmuniWeb®: Login | Register
ImmuniWeb® by High-Tech Bridge

Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories

Security Advisories
Released Patches


Two XSS vulnerabilities in Simple Security WordPress Plugin Advisory ID: HTB23244
Last Change: January 14, 2015
CVE Reference: CVE-2014-9570
Vulnerable Version: 1.1.5
Risk Level: Low

Self-XSS in Microsoft Dynamics CRM 2013 SP1 Advisory ID: HTB23245
Last Change: January 7, 2015
Vulnerable Version: ( (DB
Risk Level: Low

Cross-Site Scripting (XSS) in Revive Adserver Advisory ID: HTB23242
Last Change: December 17, 2014
CVE Reference: CVE-2014-8793
Vulnerable Version: 3.0.5
Risk Level: Low

Сross-Site Request Forgery (CSRF) in xEpan Advisory ID: HTB23240
Last Change: November 26, 2014
CVE Reference: CVE-2014-8429
Vulnerable Version: 1.0.1
Risk Level: Medium

Reflected Cross-Site Scripting (XSS) in Simple Email Form Joomla Extension Advisory ID: HTB23241
Last Change: November 19, 2014
CVE Reference: CVE-2014-8539
Vulnerable Version: 1.8.5
Risk Level: Medium

Two Reflected Cross-Site Scripting (XSS) Vulnerabilities in Forma Lms Advisory ID: HTB23226
Last Change: November 5, 2014
CVE Reference: CVE-2014-5257
Vulnerable Version: 1.2.1
Risk Level: Medium

Arbitrary File Upload in HelpDEZk Advisory ID: HTB23239
Last Change: November 5, 2014
CVE Reference: CVE-2014-8337
Vulnerable Version: 1.0.1
Risk Level: Critical

Multiple vulnerabilities in EspoCRM Advisory ID: HTB23238
Last Change: October 29, 2014
CVE References: CVE-2014-7985
Vulnerable Version: 2.5.2
Risk Level: High

Multiple Cross-Site Scripting (XSS) in WP Google Maps WordPress Plugin Advisory ID: HTB23236
Last Change: October 15, 2014
CVE Reference: CVE-2014-7182
Vulnerable Version: 6.0.26
Risk Level: Low

Reflected Cross-Site Scripting (XSS) in MaxButtons WordPress Plugin Advisory ID: HTB23237
Last Change: October 15, 2014
CVE Reference: CVE-2014-7181
Vulnerable Version: 1.26.0
Risk Level: Low