Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chip d3 bi0s vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2015
Directory traversal vulnerability in includes/file_includer.php in the Ideal MooFAQ (com_moofaq) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Ideal Com Moofaq 1.0
1 EDB exploit
NA
CVE-2010-1858
Directory traversal vulnerability in the SMEStorage (com_smestorage) component prior to 1.1 for Joomla! allows remote malicious users to read arbitrary files via directory traversal sequences in the controller parameter to index.php.
Gelembjuk Com Smestorage
1 EDB exploit
NA
CVE-2009-2782
SQL injection vulnerability in the JFusion (com_jfusion) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the Itemid parameter to index.php.
Jfusion Com Jfusion -
1 EDB exploit
NA
CVE-2009-2895
SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate (URA) 3.0 allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Phpsugar Ultimate Regnow Affiliate 3.0
1 EDB exploit
NA
CVE-2010-3426
Directory traversal vulnerability in jphone.php in the JPhone (com_jphone) component 1.0 Alpha 3 for Joomla! allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
4you-studio Com Jphone 1.0
1 EDB exploit
NA
CVE-2010-3211
Multiple SQL injection vulnerabilities in the JE FAQ Pro (com_jefaqpro) component 1.5.0 for Joomla! allow remote malicious users to execute arbitrary SQL commands via category categorylist operations with (1) the catid parameter or (2) the catid parameter in a lists action.
Jextn Com Jefaqpro 1.5.0
1 EDB exploit
NA
CVE-2009-3316
SQL injection vulnerability in the JReservation (com_jreservation) component 1.0 and 1.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a propertycpanel action to index.php.
Jforjoomla Com Jreservation 1.5
Jforjoomla Com Jreservation 1.0
1 EDB exploit
NA
CVE-2009-3334
SQL injection vulnerability in the Lhacky! Extensions Cave Joomla! Integrated Newsletters Component (aka JINC or com_jinc) component 0.2 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the newsid parameter in a messages action to index.php.
Lhacky Com Jinc 0.2
1 EDB exploit
NA
CVE-2009-3446
SQL injection vulnerability in the MyRemote Video Gallery (com_mytube) component 1.0 Beta for Joomla! allows remote malicious users to execute arbitrary SQL commands via the user_id parameter in a videos action to index.php.
Rick Estrada Com Mytube 1.0 Beta
1 EDB exploit
NA
CVE-2009-3661
Multiple SQL injection vulnerabilities in the DJ-Catalog (com_djcatalog) component for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a showItem action and (2) cid parameter in a show action to index.php.
Blueconstantmedia Com Djcatalog
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »