San Francisco: +1 (415) 635 3784  |  Geneva: +41 (22) 723 2424   |  
ImmuniWeb®: Login | Register
ImmuniWeb® by High-Tech Bridge


High-Tech Bridge Newsletter

Subscribe to our newsletter and receive some or all of our corporate news, invitations to security events or HTB Security Advisories – you choose what you want to receive.

High-Tech Bridge Security Advisories

Almost every week High-Tech Bridge's security experts discover new vulnerabilities in popular software, helping software companies and vendors to improve security and reliability of their products. Above 300 major vendors fixed security vulnerabilities thanks to High-Tech Bridge's security advisories:



527 Security Advisories
Released
335 Vendors
Released Patches
1037 Vulnerabilities
Fixed

Search

Two Reflected Cross-Site Scripting (XSS) Vulnerabilities in Forma Lms Advisory ID: HTB23226
Last Change: November 5, 2014
CVE Reference: CVE-2014-5257
Vulnerable Version: 1.2.1
Risk Level: Medium

Arbitrary File Upload in HelpDEZk Advisory ID: HTB23239
Last Change: November 5, 2014
CVE Reference: CVE-2014-8337
Vulnerable Version: 1.0.1
Risk Level: Critical

Multiple vulnerabilities in EspoCRM Advisory ID: HTB23238
Last Change: October 29, 2014
CVE References: CVE-2014-7985
CVE-2014-7986
CVE-2014-7987
Vulnerable Version: 2.5.2
Risk Level: High

Multiple Cross-Site Scripting (XSS) in WP Google Maps WordPress Plugin Advisory ID: HTB23236
Last Change: October 15, 2014
CVE Reference: CVE-2014-7182
Vulnerable Version: 6.0.26
Risk Level: Low

Reflected Cross-Site Scripting (XSS) in MaxButtons WordPress Plugin Advisory ID: HTB23237
Last Change: October 15, 2014
CVE Reference: CVE-2014-7181
Vulnerable Version: 1.26.0
Risk Level: Low

Reflected Cross-Site Scripting (XSS) in EWWW Image Optimizer WordPress Plugin Advisory ID: HTB23234
Last Change: October 8, 2014
CVE Reference: CVE-2014-6243
Vulnerable Version: 2.0.1
Risk Level: Low

Two XSS in Contact Form DB WordPress plugin Advisory ID: HTB23233
Last Change: October 8, 2014
CVE Reference: CVE-2014-7139
Vulnerable Version: 2.8.13
Risk Level: Low

Reflected Cross-Site Scripting (XSS) in Google Calendar Events WordPress Plugin Advisory ID: HTB23235
Last Change: October 8, 2014
CVE Reference: CVE-2014-7138
Vulnerable Version: 2.0.1
Risk Level: Low

Reflected Cross-Site Scripting (XSS) in Textpattern Advisory ID: HTB23223
Last Change: October 1, 2014
CVE Reference: CVE-2014-4737
Vulnerable Version: 4.5.5
Risk Level: Medium

Cross-Site Scripting (XSS) in Photo Gallery WordPress plugin Advisory ID: HTB23232
Last Change: October 1, 2014
CVE Reference: CVE-2014-6315
Vulnerable Version: 1.1.30
Risk Level: Low