Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0.1 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2010-5053
SQL injection vulnerability in the XOBBIX (com_xobbix) component 1.0.1 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the prodid parameter in a prod_desc action to index.php.
Php-shop-system Com Xobbix 1.0.1
1 EDB exploit
685
VMScore
CVE-2008-5793
Multiple PHP remote file inclusion vulnerabilities in the Clickheat - Heatmap stats (com_clickheat) component 1.0.1 for Joomla! allow remote malicious users to execute arbitrary PHP code via a URL in the (1) GLOBALS[mosConfig_absolute_path] parameter to (a) install.clickheat.php,...
Recly Clickheat-heatmap 1.0.1
1 EDB exploit
755
VMScore
CVE-2010-1716
SQL injection vulnerability in the Agenda Address Book (com_agenda) component 1.0.1 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
Joomlanetprojects Com Agenda 1.0.1
1 EDB exploit
505
VMScore
CVE-2010-1354
Directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Ternaria Com Vjdeo 1.0
Ternaria Com Vjdeo 1.0.1
1 EDB exploit
755
VMScore
CVE-2015-2798
SQL injection vulnerability in Joomla! Component Contact Form Maker 1.0.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Web-dorado Contact Form Maker 1.0.1
1 EDB exploit
755
VMScore
CVE-2008-6653
SQL injection vulnerability in webhosting.php in the Webhosting Component (com_webhosting) module prior to 1.1 RC7 for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the catid parameter to index.php.
Wh-com Com Webhosting
Wh-com Com Webhosting 1.1
Wh-com Com Webhosting 0.5.3
Wh-com Com Webhosting 0.5
Wh-com Com Webhosting 1.0.1
Wh-com Com Webhosting 1.0
Wh-com Com Webhosting 0.5.6
Wh-com Com Webhosting 0.5.5
Wh-com Com Webhosting 0.5.4
1 EDB exploit
505
VMScore
CVE-2010-1081
Directory traversal vulnerability in the Community Polls (com_communitypolls) component 1.5.2, and possibly earlier, for Core Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Corejoomla Com Communitypolls 1.5.1
Corejoomla Com Communitypolls 1.0.9
Corejoomla Com Communitypolls 1.0.4
Corejoomla Com Communitypolls 1.0.2
Corejoomla Com Communitypolls 1.0.8
Corejoomla Com Communitypolls 1.0.7
Corejoomla Com Communitypolls 1.0.6
Corejoomla Com Communitypolls 1.0.5
Corejoomla Com Communitypolls
Corejoomla Com Communitypolls 1.5.0
Corejoomla Com Communitypolls 1.0.3
Corejoomla Com Communitypolls 1.0.1
1 EDB exploit
755
VMScore
CVE-2013-7219
SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component prior to 1.0.9 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the answer_id[] parameter.
2glux Com Sexypolling
2glux Com Sexypolling 1.0.1
2glux Com Sexypolling 0.9.7
2glux Com Sexypolling 1.0.5
2glux Com Sexypolling 1.0.4
2glux Com Sexypolling 0.9.4
2glux Com Sexypolling 0.9.2
2glux Com Sexypolling 1.0.3
2glux Com Sexypolling 1.0.2
2glux Com Sexypolling 0.9.1
2glux Com Sexypolling 1.0.7
2glux Com Sexypolling 1.0.6
2glux Com Sexypolling 0.9.6
2glux Com Sexypolling 0.9.5
1 EDB exploit
383
VMScore
CVE-2009-4255
Cross-site scripting (XSS) vulnerability in the You!Hostit! template 1.0.1 for Joomla! allows remote malicious users to inject arbitrary web script or HTML via the created_by_alias parameter in index.php.
Youjoomla You\\!hostit\\! 1.0.1
755
VMScore
CVE-2010-1533
Directory traversal vulnerability in the TweetLA (com_tweetla) component 1.0.1 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Peter Hocherl Com Tweetla 1.0.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »