Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chip d3 bi0s vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-3316
SQL injection vulnerability in the JReservation (com_jreservation) component 1.0 and 1.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a propertycpanel action to index.php.
Jforjoomla Com Jreservation 1.5
Jforjoomla Com Jreservation 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3334
SQL injection vulnerability in the Lhacky! Extensions Cave Joomla! Integrated Newsletters Component (aka JINC or com_jinc) component 0.2 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the newsid parameter in a messages action to index.php.
Lhacky Com Jinc 0.2
1 EDB exploit
7.5
CVSSv2
CVE-2009-2400
SQL injection vulnerability in the PHP (com_php) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter to index.php.
Fijiwebdesign Com Php
1 EDB exploit
7.5
CVSSv2
CVE-2009-2601
SQL injection vulnerability in the Joomlaequipment (aka JUser or com_juser) component 2.0.4 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a show_profile action to index.php.
Joomlaequipment Juser 2.0.4
1 EDB exploit
5
CVSSv2
CVE-2010-1305
Directory traversal vulnerability in jinventory.php in the JInventory (com_jinventory) component 1.23.02 and possibly other versions prior to 1.26.03, a module for Joomla!, allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to ind...
Joomlamo Com Jinventory 1.23.02
1 EDB exploit
5
CVSSv2
CVE-2010-1858
Directory traversal vulnerability in the SMEStorage (com_smestorage) component prior to 1.1 for Joomla! allows remote malicious users to read arbitrary files via directory traversal sequences in the controller parameter to index.php.
Gelembjuk Com Smestorage
1 EDB exploit
7.5
CVSSv2
CVE-2009-3964
SQL injection vulnerability in the NinjaMonials (com_ninjacentral) component 1.1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the testimID parameter in a display action to index.php.
Ninjaforge Com Ninjamonials 1.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3971
SQL injection vulnerability in the jTips (com_jtips) component 1.0.7 and 1.0.9 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the season parameter in a ladder action to index.php.
Jtips Com Jtips 1.0.7
Jtips Com Jtips 1.0.9
1 EDB exploit
4.3
CVSSv2
CVE-2010-1217
Directory traversal vulnerability in the JE Form Creator (com_jeformcr) component for Joomla!, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via directory traversal sequences in the view parameter to index.php. NOTE: the original researc...
Je Form Creator Je Form Creator
1 EDB exploit
7.5
CVSSv2
CVE-2009-3446
SQL injection vulnerability in the MyRemote Video Gallery (com_mytube) component 1.0 Beta for Joomla! allows remote malicious users to execute arbitrary SQL commands via the user_id parameter in a videos action to index.php.
Rick Estrada Com Mytube 1.0 Beta
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »