Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0.6 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-14592
The CWJoomla CW Article Attachments PRO extension prior to 2.0.7 and CW Article Attachments FREE extension prior to 1.0.6 for Joomla! allow SQL Injection within download.php.
Cwjoomla Cw Article Attachments Pro
Cwjoomla Cw Article Attachments Free
1 EDB exploit
1 Github repository
9.8
CVSSv3
CVE-2016-1000124
Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6
Huge-it Portfolio Gallery 1.0.6
1 EDB exploit
8.8
CVSSv3
CVE-2017-11364
The CMS installer in Joomla! prior to 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs.
Joomla Joomla\\! 1.0.13
Joomla Joomla\\! 1.0.14
Joomla Joomla\\! 1.0.15
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.6
Joomla Joomla\\! 1.6.1
Joomla Joomla\\! 1.6.2
Joomla Joomla\\! 1.6.3
Joomla Joomla\\! 1.6.4
Joomla Joomla\\! 2.5.5
Joomla Joomla\\! 1.0.1
Joomla Joomla\\! 1.0.3
Joomla Joomla\\! 1.0.10
Joomla Joomla\\! 1.0.12
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.12
NA
CVE-2013-7219
SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component prior to 1.0.9 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the answer_id[] parameter.
2glux Com Sexypolling
2glux Com Sexypolling 1.0.1
2glux Com Sexypolling 0.9.7
2glux Com Sexypolling 1.0.5
2glux Com Sexypolling 1.0.4
2glux Com Sexypolling 0.9.4
2glux Com Sexypolling 0.9.2
2glux Com Sexypolling 1.0.3
2glux Com Sexypolling 1.0.2
2glux Com Sexypolling 0.9.1
2glux Com Sexypolling 1.0.7
2glux Com Sexypolling 1.0.6
2glux Com Sexypolling 0.9.6
2glux Com Sexypolling 0.9.5
1 EDB exploit
NA
CVE-2011-5004
Unrestricted file upload vulnerability in models/importcsv.php in the Fabrik (com_fabrik) component prior to 2.1.1 for Joomla! allows remote authenticated users with Manager privileges to execute arbitrary code by uploading a file with an executable extension, then accessing it v...
Fabrikar Com Fabrikar
Fabrikar Com Fabrikar 2.0.5
Fabrikar Com Fabrikar 2.0.4
Fabrikar Com Fabrikar 2.0.2
Fabrikar Com Fabrikar 1.0.6
Fabrikar Com Fabrikar 1.0.1
NA
CVE-2010-1718
Directory traversal vulnerability in archeryscores.php in the Archery Scores (com_archeryscores) component 1.0.6 for Joomla! allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
Lispeltuut Com Archeryscores 1.0.6
1 EDB exploit
NA
CVE-2010-1653
Directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these detai...
Htmlcoderhelper Com Graphics 1.0.6
Htmlcoderhelper Com Graphics 1.5.0
1 EDB exploit
NA
CVE-2010-1531
Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the view parameter to index.php.
Redcomponent Com Redshop 1.0.8
Redcomponent Com Redshop 1.0.7
Redcomponent Com Redshop 1.0.6
Redcomponent Com Redshop 1.0.12
Redcomponent Com Redshop 1.0.11
Redcomponent Com Redshop 1.0.3
Redcomponent Com Redshop 1.0.2
Redcomponent Com Redshop 1.0.10
Redcomponent Com Redshop 1.0.9
Redcomponent Com Redshop 1.0.1
Redcomponent Com Redshop 1.0
Redcomponent Com Redshop 1.0.5
Redcomponent Com Redshop 1.0.4
1 EDB exploit
NA
CVE-2010-1081
Directory traversal vulnerability in the Community Polls (com_communitypolls) component 1.5.2, and possibly earlier, for Core Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Corejoomla Com Communitypolls 1.5.1
Corejoomla Com Communitypolls 1.0.9
Corejoomla Com Communitypolls 1.0.4
Corejoomla Com Communitypolls 1.0.2
Corejoomla Com Communitypolls 1.0.8
Corejoomla Com Communitypolls 1.0.7
Corejoomla Com Communitypolls 1.0.6
Corejoomla Com Communitypolls 1.0.5
Corejoomla Com Communitypolls
Corejoomla Com Communitypolls 1.5.0
Corejoomla Com Communitypolls 1.0.3
Corejoomla Com Communitypolls 1.0.1
1 EDB exploit
NA
CVE-2008-6299
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5.7 and previous versions allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) the title and description parameters to the com_weblinks module and (2) unspecified v...
Joomla Joomla 1.5.0
Joomla Joomla 1.0.9
Joomla Joomla 1.0.2
Joomla Joomla 1.0.12
Joomla Joomla 1.0
Joomla Joomla 1.03
Joomla Joomla 1.5.3
Joomla Joomla 1.5.0 Beta2
Joomla Joomla 1.5
Joomla Joomla 1.0.4
Joomla Joomla 1.0.3
Joomla Joomla 1.0.1
Joomla Joomla 1.0.0
Joomla Joomla 1.5.1
Joomla Joomla 1.5.2
Joomla Joomla 1.5.5
Joomla Joomla
Joomla Joomla 1.0.8
Joomla Joomla 1.0.7
Joomla Joomla 1.0.14
Joomla Joomla 1.0.11
Joomla Joomla 1.5.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »