Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.5.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-4909
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.5.12 allow remote malicious users to inject arbitrary web script or HTML via the HTTP_REFERER header to (1) components/com_content/views/article/tmpl/form.php, (2) components/com_user/controller.php, (3) pl...
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.1
Joomla Joomla\\!
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.6
1 EDB exploit
NA
CVE-2011-4911
Joomla! prior to 1.5.12 does not perform a JEXEC check in unspecified files, which allows remote malicious users to obtain the installation path via unspecified vectors.
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.1
Joomla Joomla\\!
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.0
NA
CVE-2011-4910
Cross-site scripting (XSS) vulnerability in Joomla! prior to 1.5.12 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.5
Joomla Joomla\\!
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.1
NA
CVE-2011-4321
The password reset functionality in Joomla! 1.5.x up to and including 1.5.24 uses weak random numbers, which makes it easier for remote malicious users to change the passwords of arbitrary users via unspecified vectors.
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.5.23
Joomla Joomla\\! 1.5.24
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.18
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.12
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.20
Joomla Joomla\\! 1.5.22
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.6
NA
CVE-2011-2889
templates/system/error.php in Joomla! prior to 1.5.23 might allow remote malicious users to obtain sensitive information via unspecified vectors that trigger an undefined value of a certain error field, leading to disclosure of the installation path. NOTE: this might overlap CVE-...
Joomla Joomla\\! 1.5.12
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.20
Joomla Joomla\\! 1.5.3
Joomla Joomla\\!
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.5.19
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.21
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.4
NA
CVE-2011-2890
The MediaViewMedia class in administrator/components/com_media/views/media/view.html.php in Joomla! 1.5.23 and previous versions allows remote malicious users to obtain sensitive information via vectors involving the base variable, leading to disclosure of the installation path, ...
Joomla Joomla\\! 1.5.12
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.20
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.0
Joomla Joomla\\!
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.5.19
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.21
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.22
NA
CVE-2011-2710
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.7.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the URI to includes/application.php, reachable through index.php; and, when Internet Explorer or Konqueror is used, (2) allow ...
Joomla Joomla\\! 1.6
Joomla Joomla\\! 1.6.4
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.6.3
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.22
Joomla Joomla\\! 1.6.5
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.18
Joomla Joomla\\!
Joomla Joomla\\! 1.6.1
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.6.0
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.1
NA
CVE-2011-2509
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.6.4 allow remote malicious users to inject arbitrary web script or HTML via (1) the query string to the com_contact component, as demonstrated by the Itemid parameter to index.php; (2) the query string to t...
Joomla Joomla\\! 1.6
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.22
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.18
Joomla Joomla\\! 1.6.1
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.6.0
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.0
Joomla Joomla\\!
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.23
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.8
NA
CVE-2011-2488
Joomla! prior to 1.5.23 does not properly check for errors, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.18
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.5.20
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.19
Joomla Joomla\\! 1.5.21
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.12
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.3
NA
CVE-2010-4166
Multiple SQL injection vulnerabilities in Joomla! 1.5.x prior to 1.5.22 allow remote malicious users to execute arbitrary SQL commands via (1) the filter_order parameter in a com_weblinks category action to index.php, (2) the filter_order_Dir parameter in a com_weblinks category ...
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.18
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.6
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.19
Joomla Joomla\\! 1.5.21
Joomla Joomla\\! 1.5.12
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.20
Joomla Joomla\\! 1.5.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »