Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-2627
SQL injection vulnerability in the IDoBlog (com_idoblog) component b24 and previous versions and 1.0, a component for Joomla!, allows remote malicious users to execute arbitrary SQL commands via the userid parameter in a userblog action to index.php.
Joomla Com Idoblog
1 EDB exploit
7.5
CVSSv2
CVE-2008-0918
SQL injection vulnerability in includes/count_dl_or_link.inc.php in the astatsPRO (com_astatspro) 1.0.1 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter to getfile.php, a different vector than CVE-2008-0839. NOTE: the prov...
Astats Astatspro 1.0.1
Joomla Com Astatspro 1.0.1
1 EDB exploit
6.8
CVSSv2
CVE-2006-4553
PHP remote file inclusion vulnerability in plugin.class.php in the com_comprofiler Components 1.0 RC2 for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Joomla Com Comprofiler Component 1.0 Rc2
Mambo Com Comprofiler Component 1.0 Rc2
1 EDB exploit
6.8
CVSSv2
CVE-2007-2196
PHP remote file inclusion vulnerability in jambook.php in the Jambook (com_Jambook) 1.0 beta7 module for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: this issue has been disputed by a relia...
Joomla Jambook 1.0 Beta 7
Mambo Jambook 1.0 Beta 7
7.5
CVSSv2
CVE-2010-2694
SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter to index.php.
Redcomponent Com Redshop 1.0
2 EDB exploits
5
CVSSv2
CVE-2018-6610
Information Leakage exists in the jLike 1.0 component for Joomla! via a task=getUserByCommentId request.
Jlike Project Jlike 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2018-17397
SQL Injection exists in the AlphaIndex Dictionaries 1.0 component for Joomla! via the letter parameter.
Multiplanet Alphaindex Dictionaries 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6883
SQL injection vulnerability in the Live Chat (com_livechat) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the last parameter to getChatRoom.php. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
Joompolitan Com Livechat 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-1952
Directory traversal vulnerability in the BeeHeard (com_beeheard) and BeeHeard Lite (com_beeheardlite) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Cmstactics Com Beeheard 1.0
Cmstactics Com Beeheardlite 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-5028
SQL injection vulnerability in the JExtensions JE Job (com_jejob) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in an item action to index.php.
Harmistechnology Com Jejob 1.0
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »