Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kamtiez vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3438
SQL injection vulnerability in the JoomlaFacebook (com_facebook) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a student action to index.php.
Witchakorn Kamolpornwijit Com Facebook
2 EDB exploits
NA
CVE-2009-3443
SQL injection vulnerability in the Fastball (com_fastball) component 1.1.0 up to and including 1.2 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the league parameter to index.php.
Fastballproductions Com Fastball 1.2
Fastballproductions Com Fastball 1.1.0
1 EDB exploit
NA
CVE-2011-4570
SQL injection vulnerability in the Time Returns (com_timereturns) component 2.0 and possibly earlier versions for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a timereturns action to index.php.
Takeaweb Com Timereturns 2.0
1 EDB exploit
NA
CVE-2009-3325
SQL injection vulnerability in the Focusplus Developments Survey Manager (com_surveymanager) component 1.5.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the stype parameter in an editsurvey action to index.php.
Focusdev Com Surveymanager 1.5.0
1 EDB exploit
NA
CVE-2009-3491
SQL injection vulnerability in the Kinfusion SportFusion (com_sportfusion) component 0.2.2 up to and including 0.2.3 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the cid[0] parameter in a teamdetail action to index.php.
Kinfusion Com Sportfusion 0.2.3
Kinfusion Com Sportfusion 0.2.2
1 EDB exploit
NA
CVE-2009-4431
PHP remote file inclusion vulnerability in cal_popup.php in the Anything Digital Development JCal Pro (aka com_jcalpro or JCP) component 1.5.3.6 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Anything-digital Com Jcalpro 1.5.3.6
1 EDB exploit
NA
CVE-2009-4432
SQL injection vulnerability in index.php in CodeMight VideoCMS 3.1 allows remote malicious users to execute arbitrary SQL commands via the v parameter in a video action.
Codemight Videocms 3.1
1 EDB exploit
NA
CVE-2009-4456
SQL injection vulnerability in news_detail.php in Green Desktiny 2.3.1, and possibly earlier versions, allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Greendesktiny Green Desktiny 2.3.1
1 EDB exploit
NA
CVE-2010-1856
Cross-site scripting (XSS) vulnerability in index.php in RepairShop2 1.9.023 Trial, when magic_quotes_gpc is disabled, allows remote malicious users to inject arbitrary web script or HTML via the prod parameter in a products.details action.
Realitymedias Repairshop2 1.9.023
1 EDB exploit
NA
CVE-2009-3822
PHP remote file inclusion vulnerability in Fiji Web Design Ajax Chat (com_ajaxchat) component 1.0 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[mosConfig_absolute_path] parameter to tests/ajcuser.php.
Fijiwebdesign Com Ajaxchat 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »