Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-3817
PHP remote file inclusion vulnerability in doc/releasenote.php in the BookLibrary (com_booklibrary) component 1.0 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter, a different vector than CVE-2009-2637. NOT...
Ordasoft Com Booklibrary 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6882
Live Chat (com_livechat) component 1.0 for Joomla! allows remote malicious users to use the xmlhttp.php script as an open HTTP proxy to hide network scanning activities or scan internal networks via a GET request with a full URL in the query string.
Joompolitan Com Livechat 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-1714
Directory traversal vulnerability in the Arcade Games (com_arcadegames) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Dev.pucit.edu.pk Com Arcadegames 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2010-1469
Directory traversal vulnerability in the Ternaria Informatica JProject Manager (com_jprojectmanager) component 1.0 for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index....
Ternaria Com Jprojectmanager 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-1659
Directory traversal vulnerability in the Ultimate Portfolio (com_ultimateportfolio) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Webkul Com Ultimateportfolio 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6841
PHP remote file inclusion vulnerability in the Green Mountain Information Technology and Consulting Database Query (com_dbquery) component 1.4.1.1 and previous versions for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_pat...
Gmitc Com Dbquery 1.0
Gmitc Com Dbquery
1 EDB exploit
7.5
CVSSv2
CVE-2008-6148
SQL injection vulnerability in the Live Ticker (com_liveticker) module 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the tid parameter in a viewticker action to index.php.
Raven-worx Liveticker 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-1460
SQL injection vulnerability in the Joovideo (com_joovideo) 1.0 and 1.2.2 component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
Joomlapixel Com Joovideo 1.2.2
Joomlapixel Com Joovideo 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-1354
Directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Ternaria Com Vjdeo 1.0
Ternaria Com Vjdeo 1.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2010-2128
Directory traversal vulnerability in the JE Quotation Form (com_jequoteform) component 1.0b1 for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the view parameter to index.php.
Harmistechnology Com Jequoteform 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »