exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 101 - 125 of 578 RSS Feed

Files from High-Tech Bridge SA

Real NameHigh-Tech Bridge SA
Email addressadvisory at htbridge.com
Websitewww.htbridge.com
First Active2010-04-20
Last Active2016-08-03
View User Profile

Personal Background

High-Tech Bridge SA (htbridge.com) provides businesses and organizations with world-class information security services. High-Tech Bridge Security Research Lab (unit of High-Tech Bridge's R&D Department) regularly releases HTB Advisories that are aimed to to help various software vendors to improve security of their products. High-Tech Bridge's auditors also try to share their knowledge with the industry by publishing White Papers on information security and ethical hacking topics.


Burden 1.8 Privilege Escalation
Posted Jan 8, 2014
Authored by High-Tech Bridge SA | Site htbridge.com

Burden version 1.8 has an authentication flaw that can be exploited by a remote non-authenticated attacker to gain administrative access.

tags | exploit, remote, bypass
advisories | CVE-2013-7137
SHA-256 | 37b074fcfd1268b4c2a6f2caa51871c515255ca4a95d417dbb255ba1040e51e3
Horizon QCMS 4.0 SQL Injection / Directory Traversal
Posted Jan 8, 2014
Authored by High-Tech Bridge SA | Site htbridge.com

Horizon QCMS version 4.0 suffers from remote SQL injection and directory traversal vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, file inclusion
advisories | CVE-2013-7138, CVE-2013-7139
SHA-256 | c4a8ec5246cde659f575cae4546093150061579f6c6c6713fe4b0a2f20435884
eduTrac 1.1.1-Stable Path Traversal
Posted Jan 3, 2014
Authored by High-Tech Bridge SA | Site htbridge.com

eduTrac version 1.1.1-Stable suffers from a path traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2013-7097
SHA-256 | bbcbaefdf98a4264b09bcb1efd2aa0a1ddc9ac5a1377f6110a0313dee9cdb58c
WordPress Ad-minister 0.6 Cross Site Scripting
Posted Dec 26, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

WordPress Ad-minister plugin version 0.6 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6993
SHA-256 | 00c782cd1bf296e3d433962ceb1d7976f641f78821242d9e2dcb9de59a95273c
AskApache 3.0 Cross Site Request Forgery
Posted Dec 26, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

AskApache Firefox Adsense WordPress plugin version 3.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2013-6992
SHA-256 | 83e2b745be93d36c6d8f251eb3ff8e050c3d08d2693edf4929bbd4bd6f6b2a97
WordPress WP-Cron 1.1.5 Cross Site Scripting
Posted Dec 26, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

WordPress WP-Cron Dashboard plugin version 1.1.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6991
SHA-256 | f8840c091172531deddf4652fb5f9157003d57aa86d4e8c7c034f771605b859b
MijoSearch 2.0.1 Cross Site Scripting / Exposure
Posted Dec 17, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

MijoSearch Joomla plugin version 2.0.1 suffers from cross site scripting and information exposure vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2013-6878, CVE-2013-6879
SHA-256 | d49e666e31077ef43eaa1eb6dbab55cff4939a0e26917bfbac6027959838f389
Bitrix Site Manager 12.5.13 Insufficient Verification
Posted Dec 16, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

High-Tech Bridge Security Research Lab discovered a vulnerability in Bitrix Site Manager version 12.5.13 that can be exploited to spoof a user's identity and read, modify or delete pre-ordered items in customer's basket.

tags | exploit, spoof
advisories | CVE-2013-6788
SHA-256 | df32b7608aa8097f5c204ce23131150794fa4c21f8a3007af5bab1d3219dd012
InstantCMS 1.10.3 SQL Injection
Posted Dec 12, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

InstantCMS version 1.10.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-6839
SHA-256 | 23828f2ece7ce5ee132cb50ec95a38c18e45a28fd502c207d11da99c50075f63
Jamroom 5.0.2 Cross Site Scripting
Posted Dec 6, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Jamroom version 5.0.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6804
SHA-256 | 69198ff23705681ef817fddb29ab688a6d071258cfde047842f9549a92f07f01
Chamilo LMS 1.9.6 SQL Injection
Posted Nov 27, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Chamilo LMS version 1.9.6 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-6787
SHA-256 | 36e173b2be5a99350bc8b86a9eefbb79333880193bd30a896bc223fd6a58374d
Dokeos 2.2 RC2 SQL Injection
Posted Nov 27, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Dokeos version 2.2 RC2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-6341
SHA-256 | 1c90844d11a66c66cf2d6b5c646d4bea3595686b9a756b41e2e610d39e08eff4
Claroline 1.11.8 Cross Site Scripting
Posted Nov 27, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Claroline version 1.11.8 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2013-6267
SHA-256 | 2d1b2ef9c175f2f82b0ed223a879bb779fccc661cedf88f4043404645de074af
WordPress Tweet Blender 4.0.1 Cross Site Scripting
Posted Nov 18, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

WordPress Tweet Blender plugin version 4.0.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6342
SHA-256 | 7dd056ebf7a017614701914e9d8cdf3368acf8be185e3d65dc66b408e337e672
Zikula 1.3.5 Build 20 Cross Site Scripting
Posted Nov 13, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Zikula version 1.3.5 build 20 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6168
SHA-256 | d4aa7a019d25c876743342db6f2f79b44ee7b8795498b59486f415c5a8de7698
appRain 3.0.2 SQL Injection
Posted Nov 6, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

appRain version 3.0.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-6058
SHA-256 | c9b7309b9491bac7d77ccf7c949a6825fbdcd06cedb8d1445051efe18501f410
GuppY 4.6.26 Cross Site Scripting
Posted Oct 23, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

GuppY version 4.6.26 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-5983
SHA-256 | 8b7dc8f59410bf9a18129eab1a1488495b75587d4c45e6e7a60c33368e3de149
Microweber 0.8 Arbitrary File Deletion
Posted Oct 17, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Microweber version 0.8 suffers from an arbitrary, unauthenticated file deletion vulnerability.

tags | exploit, arbitrary
advisories | CVE-2013-5984
SHA-256 | 00e97b9578c6ea4b1d5201d508e35d8194cb39385bfa4167d6c6fece74f8402b
Feng Office 2.3.2-rc Cross Site Scripting
Posted Oct 9, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Feng Office version 2.3.2-rc suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-5744
SHA-256 | 40b47e9967f44d583ce89da957cbbc397e193b6e477657fb9f14023e55e027ed
Gnew 2013.1 PHP File Inclusion / SQL Injection
Posted Oct 2, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Gnew version 2013.1 suffers from file inclusion and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, file inclusion
advisories | CVE-2013-5639, CVE-2013-5640
SHA-256 | 5199ad852acda0940d57030b7959f51f670c52fe7e8e02ec5f376e9a5ea53bec
GLPI 0.84.1 Access Control / Code Injection
Posted Oct 2, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

GLPI version 0.84.1 suffers from improper access control bypass and PHP code injection vulnerabilities.

tags | exploit, php, vulnerability
advisories | CVE-2013-5696
SHA-256 | eff44306fe558c9ddee7deaada237abd8335437f7528971070868f8ecce632f6
X2CRM 3.4.1 Cross Site Scripting / Local File Inclusion
Posted Sep 25, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

X2CRM version 3.4.1 suffers from cross site scripting and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion
advisories | CVE-2013-5692, CVE-2013-5693
SHA-256 | 6a4cc66b913f10cf3f46ac6679902a3741e65db273a494ff6f23cbe4728b3b17
vtiger CRM 5.4.0 SQL Injection
Posted Sep 18, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

vtiger CRM version 5.4.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-5091
SHA-256 | 6f1a57864ebc9db55967154960396a0a758db0008927420ffac97caba1e1093c
ImmuniWeb Self Fuzzer Firefox Extension
Posted Sep 13, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

This whitepaper discusses the ImmuniWeb Self-Fuzzer Firefox Extension. It is designed to detect cross site scripting and SQL injection vulnerabilities in web applications.

tags | paper, web, vulnerability, xss, sql injection, fuzzer
SHA-256 | 6f6965c6ee77da56e8c4cd79550ce7ac4fc004582bbbf1c3acceb2d70e88bad8
WikkaWiki 1.3.4 Cross Site Scripting
Posted Sep 12, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

WikkaWiki version 1.3.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-5586
SHA-256 | 50a6264f9e82181f520977a4087cbbcda7d57a7f7edc82ecae17437d9e5bd3bc
Page 5 of 24
Back34567Next

File Archive:

October 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    10 Files
  • 2
    Oct 2nd
    0 Files
  • 3
    Oct 3rd
    12 Files
  • 4
    Oct 4th
    0 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    0 Files
  • 8
    Oct 8th
    0 Files
  • 9
    Oct 9th
    0 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close