Stay in Touch

Weekly newsletter on AI, Application Security & Cybercrime


Your data will stay confidential Private and Confidential

ImmuniWeb Security Advisories

While testing and developing various vulnerability detection algorithms of ImmuniWeb®, we discovered hundreds of vulnerabilities in the most popular commercial and open source web applications and frameworks:


559
Security Advisories
Released
357
Vendors
Released Patches
1073
Vulnerabilities
Fixed
MS Sharepoint
Horde
DynamicsCRM
Bonitasoft
OSCommerce
Zencart
OpenX
osCmax
SugarCRM
Magento
OrangeHRM
Mantis
Wordpress
Joomla
MODX
Bitrix

Search

Directory Traversal Vulnerability in AutoFTP Manager Advisory ID: HTB22566
Last Change: August 19, 2010
CVE Reference: CVE-2010-3104
Vulnerable Version: 4.31 and Probably Prior Versions
Risk Level: High
Directory Traversal Vulnerability in FTPGetter Advisory ID: HTB22567
Last Change: August 19, 2010
CVE Reference: CVE-2010-3103
Vulnerable Version: 3.51.0.05 and Probably Prior Versions
Risk Level: High
Multiple Vulnerabilities in CMSimple Advisory ID: HTB22558
Last Change: August 16, 2010
Vulnerable Version: 3.3 and Probably Prior Versions
Risk Level: Medium
Cross-site Request Forgery (CSRF) in pimcore Advisory ID: HTB22562
Last Change: August 16, 2010
Vulnerable Version: 1.1.0 and Probably Prior Versions
Risk Level: Low
Multiple Vulnerabilities in CMS Source Advisory ID: HTB22546
Last Change: August 11, 2010
Vulnerable Version: Current on 28.07.2010 and Probably Prior Versions
Risk Level: High
Cross-site Scripting (XSS) Vulnerabilities in eazyCMS Advisory ID: HTB22553
Last Change: August 11, 2010
Vulnerable Version: Current on 28.07.2010 and Probably Prior Versions
Risk Level: Low
Cross-site Request Forgery (CSRF) Vulnerabilities in Mystic Advisory ID: HTB22533
Last Change: August 10, 2010
Vulnerable Version: 0.1.4 and Probably Prior Versions
Risk Level: Medium
Cross-site Request Forgery (CSRF) Vulnerabilities in Onyx Advisory ID: HTB22536
Last Change: August 10, 2010
Vulnerable Version: 0.3.2 and Probably Prior Versions
Risk Level: Medium
SQL Injection Vulnerability in SyntaxCMS Advisory ID: HTB22540
Last Change: August 10, 2010
Vulnerable Version: 1.3 and Probably Prior Versions
Risk Level: High
Directory Traversal Vulnerability in SoftX FTP Client Advisory ID: HTB22541
Last Change: August 10, 2010
CVE Reference: CVE-2010-3096
Vulnerable Version: 3.3 for windows and Probably Prior Versions
Risk Level: High
Quick Start
Products
Free Trial
Newsletter