Product
positive software h sphere
11 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2022-30777
CVE-2012-5004
CVE-2008-6465
CVE-2008-4448
CVE-2008-4447
CVE-2008-1049
CVE-2006-6382
CVE-2006-3278
CVE-2006-0193
CVE-2003-1248
CVE-2003-1247
all versions
Parallels H-Sphere 3.6.1713 allows XSS via the index_en.php from parameter.
all versions
Multiple cross-site request forgery (CSRF) vulnerabilities in Parallels H-Sphere 3.3 Patch 1 allow remote attackers to hijack the
all versions
Multiple cross-site scripting (XSS) vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remo
all versions
Cross-site request forgery (CSRF) vulnerability in actions.php in Positive Software H-Sphere WebShell 4.3.10 allows remote attacke
all versions
Cross-site scripting (XSS) vulnerability in actions.php in Positive Software H-Sphere WebShell 4.3.10 allows remote attackers to i
<= 2.5_patch_10
Unspecified vulnerability in Parallels SiteStudio before 1.7.2, and 1.8.x before 1.8b, as used in Parallels H-Sphere 3.0 before Pa
all versions
The control panel for Positive Software H-Sphere before 2.5.0 RC3 creates log files in a user's directory with insecure permission
<= 2.5.1_beta_1
Cross-site scripting (XSS) vulnerability in H-Sphere 2.5.1 Beta 1 and earlier allows remote attackers to inject arbitrary web scri
all versions
Cross-site scripting (XSS) vulnerability in the Hosting Control Panel (psoft.hsphere.CP) in Positive Software H-Sphere 2.4.3 Patch
all versions
H-Sphere WebShell 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) mode and (2) zipfi
all versions
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content typ