ImmuniWeb Security Advisories
While testing and developing various vulnerability detection algorithms of ImmuniWeb®, we discovered hundreds of vulnerabilities in the most popular commercial and open source web applications and frameworks:
| 559 Security Advisories Released | 357 Vendors Released Patches | 1073 Vulnerabilities Fixed |
Search
Directory Traversal Vulnerability in AutoFTP Manager Advisory ID: HTB22566
Last Change: August 19, 2010
Vulnerable Version: 4.31 and Probably Prior Versions
Risk Level: High
Last Change: August 19, 2010
| CVE Reference: | CVE-2010-3104 |
Risk Level: High
Directory Traversal Vulnerability in FTPGetter Advisory ID: HTB22567
Last Change: August 19, 2010
Vulnerable Version: 3.51.0.05 and Probably Prior Versions
Risk Level: High
Last Change: August 19, 2010
| CVE Reference: | CVE-2010-3103 |
Risk Level: High
Multiple Vulnerabilities in CMSimple Advisory ID: HTB22558
Last Change: August 16, 2010
Vulnerable Version: 3.3 and Probably Prior Versions
Risk Level: Medium
Last Change: August 16, 2010
Vulnerable Version: 3.3 and Probably Prior Versions
Risk Level: Medium
Cross-site Request Forgery (CSRF) in pimcore Advisory ID: HTB22562
Last Change: August 16, 2010
Vulnerable Version: 1.1.0 and Probably Prior Versions
Risk Level: Low
Last Change: August 16, 2010
Vulnerable Version: 1.1.0 and Probably Prior Versions
Risk Level: Low
Multiple Vulnerabilities in CMS Source Advisory ID: HTB22546
Last Change: August 11, 2010
Vulnerable Version: Current on 28.07.2010 and Probably Prior Versions
Risk Level: High
Last Change: August 11, 2010
Vulnerable Version: Current on 28.07.2010 and Probably Prior Versions
Risk Level: High
Cross-site Scripting (XSS) Vulnerabilities in eazyCMS Advisory ID: HTB22553
Last Change: August 11, 2010
Vulnerable Version: Current on 28.07.2010 and Probably Prior Versions
Risk Level: Low
Last Change: August 11, 2010
Vulnerable Version: Current on 28.07.2010 and Probably Prior Versions
Risk Level: Low
Cross-site Request Forgery (CSRF) Vulnerabilities in Mystic Advisory ID: HTB22533
Last Change: August 10, 2010
Vulnerable Version: 0.1.4 and Probably Prior Versions
Risk Level: Medium
Last Change: August 10, 2010
Vulnerable Version: 0.1.4 and Probably Prior Versions
Risk Level: Medium
Cross-site Request Forgery (CSRF) Vulnerabilities in Onyx Advisory ID: HTB22536
Last Change: August 10, 2010
Vulnerable Version: 0.3.2 and Probably Prior Versions
Risk Level: Medium
Last Change: August 10, 2010
Vulnerable Version: 0.3.2 and Probably Prior Versions
Risk Level: Medium
SQL Injection Vulnerability in SyntaxCMS Advisory ID: HTB22540
Last Change: August 10, 2010
Vulnerable Version: 1.3 and Probably Prior Versions
Risk Level: High
Last Change: August 10, 2010
Vulnerable Version: 1.3 and Probably Prior Versions
Risk Level: High
Directory Traversal Vulnerability in SoftX FTP Client Advisory ID: HTB22541
Last Change: August 10, 2010
Vulnerable Version: 3.3 for windows and Probably Prior Versions
Risk Level: High
Last Change: August 10, 2010
| CVE Reference: | CVE-2010-3096 |
Risk Level: High