Stay in touch

Enter your email and get the latest news and researches on cybersecurity, receive invitations to private security events and conferences.

High-Tech Bridge Security Advisories

While testing and developing various vulnerability detection algorithms of ImmuniWeb®, we discovered hundreds of vulnerabilities in the most popular commercial and open source web applications and frameworks:


559
Security Advisories
Released
357
Vendors
Released Patches
1073
Vulnerabilities
Fixed
MS Sharepoint
Horde
DynamicsCRM
Bonitasoft
OSCommerce
Zencart
OpenX
osCmax
SugarCRM
Magento
OrangeHRM
Mantis
Wordpress
Joomla
MODX
Bitrix

Search

Reflected Cross-Site Scripting (XSS) in Textpattern Advisory ID: HTB23223
Last Change: October 1, 2014
CVE Reference: CVE-2014-4737
Vulnerable Version: 4.5.5
Risk Level: Medium
Cross-Site Scripting (XSS) in Photo Gallery WordPress plugin Advisory ID: HTB23232
Last Change: October 1, 2014
CVE Reference: CVE-2014-6315
Vulnerable Version: 1.1.30
Risk Level: Low
Two SQL Injections in All In One WP Security WordPress plugin Advisory ID: HTB23231
Last Change: September 24, 2014
CVE Reference: CVE-2014-6242
Vulnerable Version: 3.8.2
Risk Level: Medium
Path Traversal in webEdition Advisory ID: HTB23227
Last Change: September 17, 2014
CVE Reference: CVE-2014-5258
Vulnerable Version: 6.3.8.0 (SVN-Revision: 6985)
Risk Level: Medium
Reflected Cross-Site Scripting (XSS) in MODX Revolution Advisory ID: HTB23229
Last Change: September 17, 2014
CVE Reference: CVE-2014-5451
Vulnerable Version: 2.3.1-pl
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in MyWebSQL Advisory ID: HTB23221
Last Change: September 3, 2014
CVE Reference: CVE-2014-4735
Vulnerable Version: 3.4
Risk Level: Low
Reflected Cross-Site Scripting (XSS) in BlackCat CMS Advisory ID: HTB23228
Last Change: September 3, 2014
CVE Reference: CVE-2014-5259
Vulnerable Version: 1.0.3
Risk Level: Medium
SQL Injection Vulnerability in ArticleFR Advisory ID: HTB23225
Last Change: August 20, 2014
CVE Reference: CVE-2014-5097
Vulnerable Version: 3.0.4
Risk Level: High
Reflected Cross-Site Scripting (XSS) in Jamroom Advisory ID: HTB23224
Last Change: August 13, 2014
CVE Reference: CVE-2014-5098
Vulnerable Version: 5.2.6
Risk Level: Medium
Improper Access Control in ArticleFR Advisory ID: HTB23219
Last Change: July 30, 2014
CVE Reference: CVE-2014-4170
Vulnerable Version: 11.06.2014
Risk Level: High
Request Demo