Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
thephpfactory vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-17374
SQL Injection exists in the Auction Factory 4.5.5 component for Joomla! via the filter_order_Dir or filter_order parameter.
Thephpfactory Auction Factory 4.5.5
7.5
CVSSv2
CVE-2018-17386
SQL Injection exists in the Micro Deal Factory 2.4.0 component for Joomla! via the id parameter, or the PATH_INFO to mydeals/ or listdeals/.
Thephpfactory Micro Deal Factory 2.4.0
7.5
CVSSv2
CVE-2018-17381
SQL Injection exists in the Dutch Auction Factory 2.0.2 component for Joomla! via the filter_order_Dir or filter_order parameter.
Thephpfactory Dutch Auction Factory 2.0.2
7.5
CVSSv2
CVE-2018-17380
SQL Injection exists in the Article Factory Manager 4.3.9 component for Joomla! via the start_date, m_start_date, or m_end_date parameter.
Thephpfactory Article Factory Manager 4.3.9
1 EDB exploit
7.5
CVSSv2
CVE-2018-17376
SQL Injection exists in the Reverse Auction Factory 4.3.8 component for Joomla! via the filter_order_Dir, cat, or filter_letter parameter.
Thephpfactory Reverse Auction Factory 4.3.8
1 EDB exploit
7.5
CVSSv2
CVE-2018-17382
SQL Injection exists in the Jobs Factory 2.0.4 component for Joomla! via the filter_letter parameter.
Thephpfactory Jobs Factory 2.0.4
1 EDB exploit
7.5
CVSSv2
CVE-2018-17383
SQL Injection exists in the Collection Factory 4.1.9 component for Joomla! via the filter_order or filter_order_Dir parameter.
Thephpfactory Collection Factory 4.1.9
1 EDB exploit
7.5
CVSSv2
CVE-2018-17384
SQL Injection exists in the Swap Factory 2.2.1 component for Joomla! via the filter_order_Dir or filter_order parameter.
Thephpfactory Swap Factory 2.2.1
1 EDB exploit
7.5
CVSSv2
CVE-2018-17385
SQL Injection exists in the Social Factory 3.8.3 component for Joomla! via the radius[lat], radius[lng], or radius[radius] parameter.
Thephpfactory Social Factory 3.8.3
1 EDB exploit
7.5
CVSSv2
CVE-2018-17378
SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filter_order_Dir or filter_order parameter.
Thephpfactory Penny Auction Factory 2.0.4
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »