Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kingskrupellos vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1459
SQL injection vulnerability in the Alberghi (com_alberghi) 2.1.3 and previous versions component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
Joomlaitalia Com Alberghi 2.1.3
Mamboitalia Com Alberghi 2.1.3
1 EDB exploit
NA
CVE-2008-1540
SQL injection vulnerability in the Datsogallery (com_datsogallery) 1.3.1 module for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php. NOTE: the provenance of this information is unknown; the det...
Mambo Datsogallery 1.3.1
Joomla Datsogallery 1.3.1
1 EDB exploit
6.1
CVSSv3
CVE-2018-11532
An issue exists in the ChangUonDyU Advanced Statistics plugin 1.0.2 for MyBB. changstats.php has XSS, as demonstrated by a subject field.
Changuondyu Advanced Statistics Project Changuondyu Advanced Statistics 1.0.2
1 EDB exploit
NA
CVE-2009-2102
SQL injection vulnerability in the Jumi (com_jumi) component 2.0.3 and possibly other versions for Joomla allows remote malicious users to execute arbitrary SQL commands via the fileid parameter to index.php.
Com Jumi Com Jumi 2.0.3
1 EDB exploit
NA
CVE-2010-2694
SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter to index.php.
Redcomponent Com Redshop 1.0
2 EDB exploits
NA
CVE-2009-1499
SQL injection vulnerability in the MailTo (aka com_mailto) component in Joomla! allows remote malicious users to execute arbitrary SQL commands via the article parameter in index.php. NOTE: SecurityFocus states that this issue has been disputed by the vendor.
Joomla Joomla\\!
Joomla Com Mailto
1 EDB exploit
NA
CVE-2009-2395
SQL injection vulnerability in the K2 (com_k2) component 1.0.1 Beta and previous versions for Joomla! allows remote malicious users to execute arbitrary SQL commands via the category parameter in an itemlist action to index.php.
Joomlaworks Com K2
1 EDB exploit
9.8
CVSSv3
CVE-2018-7314
SQL Injection exists in the PrayerCenter 3.0.2 component for Joomla! via the sessionid parameter, a different vulnerability than CVE-2008-6429.
Mlwebtechnologies Prayercenter 3.0.2
1 EDB exploit
NA
CVE-2014-4960
Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x up to and including 4.1.7, and possibly 3.x, for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) listid or (2) themeid parameter t...
Joomlaboat Com Youtubegallery 4.1.4
Joomlaboat Com Youtubegallery 4.1.3
Joomlaboat Com Youtubegallery 4.1.2
Joomlaboat Com Youtubegallery 4.1.1
Joomlaboat Com Youtubegallery 3.9.2
Joomlaboat Com Youtubegallery 3.9.0
Joomlaboat Com Youtubegallery 4.0.0
Joomlaboat Com Youtubegallery 3.9.9
Joomlaboat Com Youtubegallery 3.9.8
Joomlaboat Com Youtubegallery 3.9.7
Joomlaboat Com Youtubegallery 4.1.7
Joomlaboat Com Youtubegallery 4.1.5
Joomlaboat Com Youtubegallery 4.1.0
Joomlaboat Com Youtubegallery 4.0.8
Joomlaboat Com Youtubegallery 4.0.1
Joomlaboat Com Youtubegallery 3.9.6
Joomlaboat Com Youtubegallery 3.9.4
Joomlaboat Com Youtubegallery 4.1.6
Joomlaboat Com Youtubegallery 4.0.9
Joomlaboat Com Youtubegallery 4.0.2
Joomlaboat Com Youtubegallery 3.9.5
Joomlaboat Com Youtubegallery 3.9.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3