Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.5.8 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2008-4122
Joomla! 1.5.8 does not set the secure flag for the session cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmission within an http session.
Joomla Joomla! 1.5.8
NA
CVE-2009-1940
Cross-site scripting (XSS) vulnerability in the administrator panel in the com_users core component for Joomla! 1.5.x up to and including 1.5.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Joomla Joomla 1.5.5
Joomla Joomla 1.5
Joomla Joomla 1.5.7
Joomla Joomla 1.5.9
Joomla Joomla 1.5.3
Joomla Joomla 1.5.10
Joomla Joomla 1.5.2
Joomla Joomla 1.5.8
Joomla Joomla 1.5.1
Joomla Joomla 1.5.4
Joomla Joomla 1.5.6
NA
CVE-2009-1279
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5 up to and including 1.5.9 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors to the (1) com_admin component, (2) com_search component when "Gather Search Statistics&qu...
Joomla Joomla 1.5.5
Joomla Joomla 1.5
Joomla Joomla 1.5.7
Joomla Joomla 1.5.0
Joomla Joomla 1.5.9
Joomla Joomla 1.5.3
Joomla Joomla 1.5.2
Joomla Joomla 1.5.8
Joomla Joomla 1.5.1
Joomla Joomla 1.5.4
Joomla Joomla 1.5.6
NA
CVE-2009-1280
Multiple cross-site request forgery (CSRF) vulnerabilities in the com_media component for Joomla! 1.5.x up to and including 1.5.9 allow remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Joomla Joomla 1.5.5
Joomla Joomla 1.5
Joomla Joomla 1.5.7
Joomla Joomla 1.5.0
Joomla Joomla 1.5.9
Joomla Joomla 1.5.3
Joomla Joomla 1.5.2
Joomla Joomla 1.5.8
Joomla Joomla 1.5.1
Joomla Joomla 1.5.4
Joomla Joomla 1.5.6
NA
CVE-2011-4909
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.5.12 allow remote malicious users to inject arbitrary web script or HTML via the HTTP_REFERER header to (1) components/com_content/views/article/tmpl/form.php, (2) components/com_user/controller.php, (3) pl...
Joomla Joomla!
Joomla Joomla! 1.5.3
Joomla Joomla! 1.5.2
Joomla Joomla! 1.5.9
Joomla Joomla! 1.5.4
Joomla Joomla! 1.5.10
Joomla Joomla! 1.5.7
Joomla Joomla! 1.5.0
Joomla Joomla! 1.5.6
Joomla Joomla! 1.5.1
Joomla Joomla! 1.5.8
Joomla Joomla! 1.5.5
1 EDB exploit
NA
CVE-2011-4910
Cross-site scripting (XSS) vulnerability in Joomla! prior to 1.5.12 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Joomla Joomla!
Joomla Joomla! 1.5.3
Joomla Joomla! 1.5.2
Joomla Joomla! 1.5.9
Joomla Joomla! 1.5.4
Joomla Joomla! 1.5.10
Joomla Joomla! 1.5.7
Joomla Joomla! 1.5.0
Joomla Joomla! 1.5.6
Joomla Joomla! 1.5.1
Joomla Joomla! 1.5.8
Joomla Joomla! 1.5.5
NA
CVE-2011-4911
Joomla! prior to 1.5.12 does not perform a JEXEC check in unspecified files, which allows remote malicious users to obtain the installation path via unspecified vectors.
Joomla Joomla!
Joomla Joomla! 1.5.3
Joomla Joomla! 1.5.2
Joomla Joomla! 1.5.9
Joomla Joomla! 1.5.4
Joomla Joomla! 1.5.10
Joomla Joomla! 1.5.7
Joomla Joomla! 1.5.0
Joomla Joomla! 1.5.6
Joomla Joomla! 1.5.1
Joomla Joomla! 1.5.8
Joomla Joomla! 1.5.5
NA
CVE-2009-1938
Cross-site scripting (XSS) vulnerability in Joomla! 1.5.x up to and including 1.5.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to database output and the frontend administrative panel.
Joomla Joomla 1.5.5
Joomla Joomla 1.5
Joomla Joomla 1.5.7
Joomla Joomla 1.5.0
Joomla Joomla 1.5.9
Joomla Joomla 1.5.3
Joomla Joomla 1.5.10
Joomla Joomla 1.5.2
Joomla Joomla 1.5.8
Joomla Joomla 1.5.1
Joomla Joomla 1.5.4
Joomla Joomla 1.5.6
1 EDB exploit
NA
CVE-2009-3946
Joomla! prior to 1.5.15 allows remote malicious users to read an extension's XML file, and thereby obtain the extension's version number, via a direct request.
Joomla Joomla!
Joomla Joomla! 1.5.11
Joomla Joomla! 1.5.13
Joomla Joomla! 1.5.3
Joomla Joomla! 1.5.2
Joomla Joomla! 1.5.9
Joomla Joomla! 1.5.4
Joomla Joomla! 1.5.10
Joomla Joomla! 1.5.7
Joomla Joomla! 1.5.0
Joomla Joomla! 1.5.6
Joomla Joomla! 1.5.1
Joomla Joomla! 1.5.8
Joomla Joomla! 1.5.12
Joomla Joomla! 1.5.5
NA
CVE-2009-3945
Unspecified vulnerability in the Front-End Editor in the com_content component in Joomla! prior to 1.5.15 allows remote authenticated users, with Author privileges, to replace the articles of an arbitrary user via unknown vectors.
Joomla Joomla!
Joomla Joomla! 1.5.11
Joomla Joomla! 1.5.13
Joomla Joomla! 1.5.3
Joomla Joomla! 1.5.2
Joomla Joomla! 1.5.9
Joomla Joomla! 1.5.4
Joomla Joomla! 1.5.10
Joomla Joomla! 1.5.7
Joomla Joomla! 1.5.0
Joomla Joomla! 1.5.6
Joomla Joomla! 1.5.1
Joomla Joomla! 1.5.8
Joomla Joomla! 1.5.12
Joomla Joomla! 1.5.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »