Vulnerabilities

Detected by RIPS, missed by others.

The following critical security vulnerabilities were detected with RIPS and reported responsibly to the affected vendor.

SoftwareVersionIssue TypeDetails
Joomla!3.7.5LDAP InjectionDetails, Demo, News, CVE-2017-14596
SugarCRM7.7, 7.8, 7.9SQL Injection, File DisclosureDetails, CVE-2017-14508, 14509, 14510
Ampache3.8.2SQL InjectionDetails, More
e1072.1.2SQL InjectionDetails, Demo
AbanteCart1.2.8SQL InjectionDetails, Demo
Kliqqi3.0.0.5Remote Code ExecutionDetails, Demo
osClass3.6.1Remote Code ExecutionDetails, Demo, Video
Redaxo5.2.0Remote Code ExecutionDetails, Demo
Vtiger6.5.0SQL InjectionDetails, Demo
Precurio2.1Path TraversalDetails, Demo
PHPKit1.6.6File UploadDetails, Demo
Serendipity2.0.3File UploadDetails, Demo, Video
Roundcube1.2.2Remote Command ExecutionDetails, Demo, CVE-2016-9920, Video
Expression Engine3.4.2PHP Object InjectionDetails, Demo, Video
eFront3.6.15SQL InjectionDetails, Demo
Coppermine Gallery1.5.42, 1.6.x-dev1Remote Command ExecutionDetails, Demo
FreePBX13.xRemote Command ExecutionDetails, Demo, News, Video
TeamPass2.1.25SQL InjectionDetails, Demo, News
phpMyAdmin4.6.2Remote Code ExecutionPMASA-2016-27, CVE-2016-5734, Demo
Concrete55.7.2.1SQL InjectionDetails
Drupal7.34PHP Object InjectionDetails
Magento1.9.0.1PHP Object InjectionDetails
phpMyAdmin4.2.10Local File InclusionPMASA-2014-14, CVE-2014-8959
Joomla!3.3.4Remote Code ExecutionDetails, CVE-2014-7228
phpBB2.0.23SQL InjectionDetails, Demo
CMS Made Simple1.11.11SQL InjectionChangelog, Demo
osCommerce2.3.4Remote Code ExecutionVideo
Wordpress4.01Cross-Site ScriptingDetails
hotCRP2.90SQL InjectionChangelog
hotCRP2.60SQL InjectionChangelog
OpenConf5.30Remote Code ExecutionDetails, News, Video
Gallery33.0.4Remote Code ExecutionDetails

How can these vulnerabilities be automatically detected in your source code?