Geneva: +41 (22) 723 2424  |  San Francisco: +1 (415) 659 1861  |  

Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories


559
Security Advisories
Released
356
Vendors
Released Patches
1071
Vulnerabilities
Fixed

Search

Сross-Site Request Forgery (CSRF) in xEpan Advisory ID: HTB23240
Last Change: November 26, 2014
CVE Reference: CVE-2014-8429
Vulnerable Version: 1.0.1
Risk Level: Medium
Reflected Cross-Site Scripting (XSS) in Simple Email Form Joomla Extension Advisory ID: HTB23241
Last Change: November 19, 2014
CVE Reference: CVE-2014-8539
Vulnerable Version: 1.8.5
Risk Level: Medium
Two Reflected Cross-Site Scripting (XSS) Vulnerabilities in Forma Lms Advisory ID: HTB23226
Last Change: November 5, 2014
CVE Reference: CVE-2014-5257
Vulnerable Version: 1.2.1
Risk Level: Medium
Arbitrary File Upload in HelpDEZk Advisory ID: HTB23239
Last Change: November 5, 2014
CVE Reference: CVE-2014-8337
Vulnerable Version: 1.0.1
Risk Level: Critical
Multiple vulnerabilities in EspoCRM Advisory ID: HTB23238
Last Change: October 29, 2014
CVE References: CVE-2014-7985
CVE-2014-7986
CVE-2014-7987
Vulnerable Version: 2.5.2
Risk Level: High
Multiple Cross-Site Scripting (XSS) in WP Google Maps WordPress Plugin Advisory ID: HTB23236
Last Change: October 15, 2014
CVE Reference: CVE-2014-7182
Vulnerable Version: 6.0.26
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in MaxButtons WordPress Plugin Advisory ID: HTB23237
Last Change: October 15, 2014
CVE Reference: CVE-2014-7181
Vulnerable Version: 1.26.0
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in EWWW Image Optimizer WordPress Plugin Advisory ID: HTB23234
Last Change: October 8, 2014
CVE Reference: CVE-2014-6243
Vulnerable Version: 2.0.1
Risk Level: Low
Two XSS in Contact Form DB WordPress plugin Advisory ID: HTB23233
Last Change: October 8, 2014
CVE Reference: CVE-2014-7139
Vulnerable Version: 2.8.13
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in Google Calendar Events WordPress Plugin Advisory ID: HTB23235
Last Change: October 8, 2014
CVE Reference: CVE-2014-7138
Vulnerable Version: 2.0.1
Risk Level: Low