Stay in touch

Get our research, blog and event invitations before everybody else!

Your data will stay confidential Private and Confidential

While testing and developing various vulnerability detection algorithms of ImmuniWeb®, we discovered hundreds of vulnerabilities in the most popular commercial and open source web applications and frameworks:


559
Security Advisories
Released
357
Vendors
Released Patches
1073
Vulnerabilities
Fixed
MS Sharepoint
Horde
DynamicsCRM
Bonitasoft
OSCommerce
Zencart
OpenX
osCmax
SugarCRM
Magento
OrangeHRM
Mantis
Wordpress
Joomla
MODX
Bitrix

Search

Сross-Site Request Forgery (CSRF) in xEpan Advisory ID: HTB23240
Last Change: November 26, 2014
CVE Reference: CVE-2014-8429
Vulnerable Version: 1.0.1
Risk Level: Medium
Reflected Cross-Site Scripting (XSS) in Simple Email Form Joomla Extension Advisory ID: HTB23241
Last Change: November 19, 2014
CVE Reference: CVE-2014-8539
Vulnerable Version: 1.8.5
Risk Level: Medium
Two Reflected Cross-Site Scripting (XSS) Vulnerabilities in Forma Lms Advisory ID: HTB23226
Last Change: November 5, 2014
CVE Reference: CVE-2014-5257
Vulnerable Version: 1.2.1
Risk Level: Medium
Arbitrary File Upload in HelpDEZk Advisory ID: HTB23239
Last Change: November 5, 2014
CVE Reference: CVE-2014-8337
Vulnerable Version: 1.0.1
Risk Level: Critical
Multiple vulnerabilities in EspoCRM Advisory ID: HTB23238
Last Change: October 29, 2014
CVE References: CVE-2014-7985
CVE-2014-7986
CVE-2014-7987
Vulnerable Version: 2.5.2
Risk Level: High
Multiple Cross-Site Scripting (XSS) in WP Google Maps WordPress Plugin Advisory ID: HTB23236
Last Change: October 15, 2014
CVE Reference: CVE-2014-7182
Vulnerable Version: 6.0.26
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in MaxButtons WordPress Plugin Advisory ID: HTB23237
Last Change: October 15, 2014
CVE Reference: CVE-2014-7181
Vulnerable Version: 1.26.0
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in EWWW Image Optimizer WordPress Plugin Advisory ID: HTB23234
Last Change: October 8, 2014
CVE Reference: CVE-2014-6243
Vulnerable Version: 2.0.1
Risk Level: Low
Two XSS in Contact Form DB WordPress plugin Advisory ID: HTB23233
Last Change: October 8, 2014
CVE Reference: CVE-2014-7139
Vulnerable Version: 2.8.13
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in Google Calendar Events WordPress Plugin Advisory ID: HTB23235
Last Change: October 8, 2014
CVE Reference: CVE-2014-7138
Vulnerable Version: 2.0.1
Risk Level: Low
How many insecure apps do you have? Free discovery >
Free interactive demo or quote Request Now >
High-Tech Bridge on Facebook High-Tech Bridge on Twitter High-Tech Bridge on LinkedIn High-Tech Bridge RSS Feeds Send by Email