San Francisco: +1 (415) 635 3784  |  Geneva: +41 (22) 723 2424   |  
ImmuniWeb®: Login | Register
ImmuniWeb® by High-Tech Bridge

High-Tech Bridge Newsletter

Subscribe to our newsletter and receive some or all of our corporate news, invitations to security events or HTB Security Advisories – you choose what you want to receive.

High-Tech Bridge Security Advisories

Almost every week High-Tech Bridge's security experts discover new vulnerabilities in popular software, helping software companies and vendors to improve security and reliability of their products. Above 300 major vendors fixed security vulnerabilities thanks to High-Tech Bridge's security advisories:

527 Security Advisories
335 Vendors
Released Patches
1037 Vulnerabilities


Сross-Site Request Forgery (CSRF) in AskApache Firefox Adsense Wordpress plugin Advisory ID: HTB23188
Last Change: December 26, 2013
CVE Reference: CVE-2013-6992
Vulnerable Version: 3.0
Risk Level: Low

Cross-Site Scripting (XSS) in WP-Cron Dashboard Wordpress plugin Advisory ID: HTB23189
Last Change: December 26, 2013
CVE Reference: CVE-2013-6991
Vulnerable Version: 1.1.5
Risk Level: Low

XSS and Full Path Disclosure in MijoSearch Joomla Extension Advisory ID: HTB23186
Last Change: December 16, 2013
CVE References: CVE-2013-6878
Vulnerable Version: 2.0.1
Risk Level: Medium

User Identity Spoofing in Bitrix Site Manager Advisory ID: HTB23183
Last Change: December 11, 2013
CVE Reference: CVE-2013-6788
Vulnerable Version: 12.5.13
Risk Level: Medium

SQL Injection in InstantCMS Advisory ID: HTB23185
Last Change: December 11, 2013
CVE Reference: CVE-2013-6839
Vulnerable Version: 1.10.3
Risk Level: High

Cross-Site Scripting (XSS) in Jamroom Advisory ID: HTB23184
Last Change: December 4, 2013
CVE Reference: CVE-2013-6804
Vulnerable Version: 5.0.2
Risk Level: Medium

Multiple Cross-Site Scripting (XSS) in Claroline Advisory ID: HTB23179
Last Change: November 27, 2013
CVE Reference: CVE-2013-6267
Vulnerable Version: 1.11.8
Risk Level: Medium

SQL Injection in Dokeos Advisory ID: HTB23181
Last Change: November 27, 2013
CVE Reference: CVE-2013-6341
Vulnerable Version: 2.2 RC2
Risk Level: High

SQL Injection in Chamilo LMS Advisory ID: HTB23182
Last Change: November 27, 2013
CVE Reference: CVE-2013-6787
Vulnerable Version: 1.9.6
Risk Level: Medium

Cross-Site Scripting (XSS) in Tweet Blender Wordpress Plugin Advisory ID: HTB23180
Last Change: November 15, 2013
CVE Reference: CVE-2013-6342
Vulnerable Version: 4.0.1
Risk Level: Low