In light of COVID-19 precaution measures, we remind that all ImmuniWeb products can be easily configured and safely paid online without any human contact or paperwork.

Total Tests:
Stay in Touch

Weekly newsletter on AI, Application Security & Cybercrime


Your data will stay confidential Private and Confidential

ImmuniWeb Security Advisories | Page 12

While testing and developing various vulnerability detection algorithms of ImmuniWeb®, we discovered hundreds of vulnerabilities in the most popular commercial and open source web applications and frameworks:


559
Security Advisories
Released
357
Vendors
Released Patches
1073
Vulnerabilities
Fixed
MS Sharepoint
Horde
DynamicsCRM
Bonitasoft
OSCommerce
Zencart
OpenX
osCmax
SugarCRM
Magento
OrangeHRM
Mantis
Wordpress
Joomla
MODX
Bitrix

Search

Path Traversal in eduTrac Advisory ID: HTB23190
Last Change: January 2, 2014
CVE Reference: CVE-2013-7097
Vulnerable Version: 1.1.1-Stable
Risk Level: Medium
Cross-Site Scripting (XSS) in Ad-minister Wordpress plugin Advisory ID: HTB23187
Last Change: December 26, 2013
CVE Reference: CVE-2013-6993
Vulnerable Version: 0.6
Risk Level: Low
Сross-Site Request Forgery (CSRF) in AskApache Firefox Adsense Wordpress plugin Advisory ID: HTB23188
Last Change: December 26, 2013
CVE Reference: CVE-2013-6992
Vulnerable Version: 3.0
Risk Level: Low
Cross-Site Scripting (XSS) in WP-Cron Dashboard Wordpress plugin Advisory ID: HTB23189
Last Change: December 26, 2013
CVE Reference: CVE-2013-6991
Vulnerable Version: 1.1.5
Risk Level: Low
XSS and Full Path Disclosure in MijoSearch Joomla Extension Advisory ID: HTB23186
Last Change: December 16, 2013
CVE References: CVE-2013-6878
CVE-2013-6879
Vulnerable Version: 2.0.1
Risk Level: Medium
User Identity Spoofing in Bitrix Site Manager Advisory ID: HTB23183
Last Change: December 11, 2013
CVE Reference: CVE-2013-6788
Vulnerable Version: 12.5.13
Risk Level: Medium
SQL Injection in InstantCMS Advisory ID: HTB23185
Last Change: December 11, 2013
CVE Reference: CVE-2013-6839
Vulnerable Version: 1.10.3
Risk Level: High
Cross-Site Scripting (XSS) in Jamroom Advisory ID: HTB23184
Last Change: December 4, 2013
CVE Reference: CVE-2013-6804
Vulnerable Version: 5.0.2
Risk Level: Medium
Multiple Cross-Site Scripting (XSS) in Claroline Advisory ID: HTB23179
Last Change: November 27, 2013
CVE Reference: CVE-2013-6267
Vulnerable Version: 1.11.8
Risk Level: Medium
SQL Injection in Dokeos Advisory ID: HTB23181
Last Change: November 27, 2013
CVE Reference: CVE-2013-6341
Vulnerable Version: 2.2 RC2
Risk Level: High
Ask a Question