Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-0796
SQL injection vulnerability in the JE Quiz (com_jequizmanagement) component 1.b01 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the eid parameter in a question action to index.php.
Harmistechnology Com Jeeventcalendar 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6881
Multiple SQL injection vulnerabilities in the Live Chat (com_livechat) component 1.0 for Joomla! allow remote malicious users to execute arbitrary SQL commands via the last parameter to (1) getChat.php, (2) getChatRoom.php, and (3) getSavedChatRooms.php.
Joompolitan Com Livechat 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6882
Live Chat (com_livechat) component 1.0 for Joomla! allows remote malicious users to use the xmlhttp.php script as an open HTTP proxy to hide network scanning activities or scan internal networks via a GET request with a full URL in the query string.
Joompolitan Com Livechat 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-1659
Directory traversal vulnerability in the Ultimate Portfolio (com_ultimateportfolio) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Webkul Com Ultimateportfolio 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-1714
Directory traversal vulnerability in the Arcade Games (com_arcadegames) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Dev.pucit.edu.pk Com Arcadegames 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6841
PHP remote file inclusion vulnerability in the Green Mountain Information Technology and Consulting Database Query (com_dbquery) component 1.4.1.1 and previous versions for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_pat...
Gmitc Com Dbquery 1.0
Gmitc Com Dbquery
1 EDB exploit
7.5
CVSSv2
CVE-2008-6148
SQL injection vulnerability in the Live Ticker (com_liveticker) module 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the tid parameter in a viewticker action to index.php.
Raven-worx Liveticker 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-1354
Directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Ternaria Com Vjdeo 1.0
Ternaria Com Vjdeo 1.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-1460
SQL injection vulnerability in the Joovideo (com_joovideo) 1.0 and 1.2.2 component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
Joomlapixel Com Joovideo 1.2.2
Joomlapixel Com Joovideo 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2008-6482
PHP remote file inclusion vulnerability in admin.treeg.php in the Flash Tree Gallery (com_treeg) component 1.0 for Joomla!, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via the mosConfig_live_site parameter.
Justjoomla Com Treeg 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »