Vulnerabilities > Hashtopus Project

DATE	CVE	VULNERABILITY TITLE	RISK
2017-07-27	CVE-2017-11679	Cross-Site Request Forgery (CSRF) vulnerability in Hashtopus Project Hashtopus 1.5G Cross-Site Request Forgery (CSRF) exists in Hashtopus 1.5g via the password parameter to admin.php in an a=config action. network low complexity hashtopus-project CWE-352	8.8
2017-07-27	CVE-2017-11678	SQL Injection vulnerability in Hashtopus Project Hashtopus 1.5G SQL injection vulnerability in Hashtopus 1.5g allows remote authenticated users to execute arbitrary SQL commands via the format parameter in admin.php. network low complexity hashtopus-project CWE-89	8.8
2017-07-27	CVE-2017-11677	Cross-site Scripting vulnerability in Hashtopus Project Hashtopus 1.5G Cross-site scripting (XSS) vulnerability in Hashtopus 1.5g allows remote attackers to inject arbitrary web script or HTML via the query string to admin.php. network low complexity hashtopus-project CWE-79	6.1

Vulnerabilities > Hashtopus Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Hashtopus Project"}]}