Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0.4 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-3771
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.0.4 allow remote malicious users to inject arbitrary web script or HTML via (1) "GET and other variables" and (2) "SEF".
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0
Joomla Joomla 1.0.1
7.5
CVSSv2
CVE-2005-3772
Multiple SQL injection vulnerabilities in Joomla! prior to 1.0.4 allow remote malicious users to execute arbitrary SQL commands via the (1) Itemid variable in the Polls modules and (2) multiple unspecified methods in the mosDBTable class.
Joomla Joomla 1.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
6.5
CVSSv2
CVE-2017-11364
The CMS installer in Joomla! prior to 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs.
Joomla Joomla\\! 1.0.13
Joomla Joomla\\! 1.0.14
Joomla Joomla\\! 1.0.15
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.6
Joomla Joomla\\! 1.6.1
Joomla Joomla\\! 1.6.2
Joomla Joomla\\! 1.6.3
Joomla Joomla\\! 1.6.4
Joomla Joomla\\! 2.5.5
Joomla Joomla\\! 1.0.1
Joomla Joomla\\! 1.0.3
Joomla Joomla\\! 1.0.10
Joomla Joomla\\! 1.0.12
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.12
6.8
CVSSv2
CVE-2006-6166
Cross-site scripting (XSS) vulnerability in jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor (JCE) 1.0.4 for Joomla! (com_jce), without the 20060821 jce_patch, allows remote malicious users to inject arbitrary web script or HTML via the mosConfig_live_site ...
Ryan Demmer Joomla Content Editor 1.0.4
7.5
CVSSv2
CVE-2008-2095
SQL injection vulnerability in index.php in the FlippingBook (com_flippingbook) 1.0.4 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the book_id parameter.
Page-flip-tools Flipping Book 1.0.4
Joomla Com Flippingbook 1.0.4
Mambo Com Flippingbook 1.0.4
1 EDB exploit
7.5
CVSSv2
CVE-2010-1045
SQL injection vulnerability in the Productbook (com_productbook) component 1.0.4 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php. NOTE: some of these details are obtained from third party information...
Design-cars Com Productbook 1.0.4
1 EDB exploit
7.5
CVSSv2
CVE-2009-4104
SQL injection vulnerability in Lyften Designs LyftenBloggie (com_lyftenbloggie) component 1.0.4 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the author parameter to index.php.
Lyften Com Lyftenbloggie 1.0.4
1 EDB exploit
7.5
CVSSv2
CVE-2010-1600
SQL injection vulnerability in the Media Mall Factory (com_mediamall) component 1.0.4 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the category parameter to index.php.
Thefactory Com Mediamall 1.0.4
1 EDB exploit
6.5
CVSSv2
CVE-2016-1000119
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
Huge-it Catalog 1.0.4
6.5
CVSSv2
CVE-2016-1000120
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
Huge-it Catalog 1.0.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »