Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.5 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-4102
Joomla! 1.5 prior to 1.5.7 initializes PHP's PRNG with a weak seed, which makes it easier for malicious users to guess the pseudo-random values produced by PHP's mt_rand function, as demonstrated by guessing password reset tokens, a different vulnerability than CVE-2008...
Joomla Joomla 1.5
Joomla Joomla 1.5.1
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
Joomla Joomla 1.5.6
5.8
CVSSv2
CVE-2008-4104
Multiple open redirect vulnerabilities in Joomla! 1.5 prior to 1.5.7 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a "passed in" URL.
Joomla Joomla 1.5
Joomla Joomla 1.5.1
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
Joomla Joomla 1.5.6
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
7.5
CVSSv2
CVE-2008-4105
JRequest in Joomla! 1.5 prior to 1.5.7 does not sanitize variables that were set with JRequest::setVar, which allows remote malicious users to conduct "variable injection" attacks and have unspecified other impact.
Joomla Joomla 1.5
Joomla Joomla 1.5.1
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
Joomla Joomla 1.5.6
6.8
CVSSv2
CVE-2009-1280
Multiple cross-site request forgery (CSRF) vulnerabilities in the com_media component for Joomla! 1.5.x up to and including 1.5.9 allow remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Joomla Joomla 1.5.0
Joomla Joomla 1.5.6
Joomla Joomla 1.5.7
Joomla Joomla 1.5.8
Joomla Joomla 1.5
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
Joomla Joomla 1.5.1
Joomla Joomla 1.5.9
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
4.3
CVSSv2
CVE-2009-1940
Cross-site scripting (XSS) vulnerability in the administrator panel in the com_users core component for Joomla! 1.5.x up to and including 1.5.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Joomla Joomla 1.5
Joomla Joomla 1.5.6
Joomla Joomla 1.5.7
Joomla Joomla 1.5.1
Joomla Joomla 1.5.10
Joomla Joomla 1.5.8
Joomla Joomla 1.5.9
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
2.6
CVSSv2
CVE-2009-1279
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5 up to and including 1.5.9 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors to the (1) com_admin component, (2) com_search component when "Gather Search Statistics&qu...
Joomla Joomla 1.5.0
Joomla Joomla 1.5.1
Joomla Joomla 1.5.8
Joomla Joomla 1.5.9
Joomla Joomla 1.5.6
Joomla Joomla 1.5.7
Joomla Joomla 1.5.2
Joomla Joomla 1.5.3
Joomla Joomla 1.5
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
4.3
CVSSv2
CVE-2009-1938
Cross-site scripting (XSS) vulnerability in Joomla! 1.5.x up to and including 1.5.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to database output and the frontend administrative panel.
Joomla Joomla 1.5
Joomla Joomla 1.5.0
Joomla Joomla 1.5.1
Joomla Joomla 1.5.10
Joomla Joomla 1.5.2
Joomla Joomla 1.5.9
Joomla Joomla 1.5.3
Joomla Joomla 1.5.4
Joomla Joomla 1.5.5
Joomla Joomla 1.5.6
Joomla Joomla 1.5.7
Joomla Joomla 1.5.8
1 EDB exploit
7.5
CVSSv2
CVE-2015-8562
Joomla! 1.5.x, 2.x, and 3.x prior to 3.4.6 allow remote malicious users to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015.
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.18
Joomla Joomla\\! 1.5.25
Joomla Joomla\\! 1.5.26
Joomla Joomla\\! 1.6.0
Joomla Joomla\\! 1.7.0
Joomla Joomla\\! 1.7.1
Joomla Joomla\\! 2.5.2
Joomla Joomla\\! 2.5.3
Joomla Joomla\\! 2.5.11
Joomla Joomla\\! 2.5.12
Joomla Joomla\\! 2.5.19
Joomla Joomla\\! 2.5.20
Joomla Joomla\\! 2.5.27
Joomla Joomla\\! 2.5.28
Joomla Joomla\\! 3.1.3
Joomla Joomla\\! 3.1.4
Joomla Joomla\\! 3.2.4
Joomla Joomla\\! 3.3.0
2 EDB exploits
16 Github repositories
4.3
CVSSv2
CVE-2011-4909
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.5.12 allow remote malicious users to inject arbitrary web script or HTML via the HTTP_REFERER header to (1) components/com_content/views/article/tmpl/form.php, (2) components/com_user/controller.php, (3) pl...
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.1
Joomla Joomla\\!
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.6
1 EDB exploit
10
CVSSv2
CVE-2008-3225
Joomla! prior to 1.5.4 allows malicious users to access administration functionality, which has unknown impact and attack vectors related to a missing "LDAP security fix."
Joomla Joomla 1.0.11
Joomla Joomla 1.0.12
Joomla Joomla 1.0.7
Joomla Joomla 1.0.8
Joomla Joomla 1.5.1
Joomla Joomla 1.5.2
Joomla Joomla 1.0.1
Joomla Joomla 1.0.10
Joomla Joomla 1.0.5
Joomla Joomla 1.0.6
Joomla Joomla 1.5.0 Beta1
Joomla Joomla 1.5.0 Beta2
Joomla Joomla 1.5.0 Rc1
Joomla Joomla 1.0
Joomla Joomla 1.0.0
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.5
Joomla Joomla 1.5.0 Beta
Joomla Joomla 1.0.13
Joomla Joomla 1.0.2
Joomla Joomla 1.0.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »