Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-17378
SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filter_order_Dir or filter_order parameter.
Thephpfactory Penny Auction Factory 2.0.4
1 EDB exploit
9.8
CVSSv3
CVE-2018-17379
SQL Injection exists in the Raffle Factory 3.5.2 component for Joomla! via the filter_order_Dir or filter_order parameter.
Thephpfactory Raffle Factory 3.5.2
1 EDB exploit
9.8
CVSSv3
CVE-2018-17377
SQL Injection exists in the Questions 1.4.3 component for Joomla! via the term, userid, users, or groups parameter.
Extensiondeveloper Questions 1.4.3
1 EDB exploit
9.8
CVSSv3
CVE-2018-17380
SQL Injection exists in the Article Factory Manager 4.3.9 component for Joomla! via the start_date, m_start_date, or m_end_date parameter.
Thephpfactory Article Factory Manager 4.3.9
1 EDB exploit
9.8
CVSSv3
CVE-2018-17382
SQL Injection exists in the Jobs Factory 2.0.4 component for Joomla! via the filter_letter parameter.
Thephpfactory Jobs Factory 2.0.4
1 EDB exploit
9.8
CVSSv3
CVE-2018-17384
SQL Injection exists in the Swap Factory 2.2.1 component for Joomla! via the filter_order_Dir or filter_order parameter.
Thephpfactory Swap Factory 2.2.1
1 EDB exploit
9.8
CVSSv3
CVE-2018-17385
SQL Injection exists in the Social Factory 3.8.3 component for Joomla! via the radius[lat], radius[lng], or radius[radius] parameter.
Thephpfactory Social Factory 3.8.3
1 EDB exploit
9.8
CVSSv3
CVE-2018-17394
SQL Injection exists in the Timetable Schedule 3.6.8 component for Joomla! via the eid parameter.
Osthemeclub Timetable Schedule 3.6.8
1 EDB exploit
9.8
CVSSv3
CVE-2018-17397
SQL Injection exists in the AlphaIndex Dictionaries 1.0 component for Joomla! via the letter parameter.
Multiplanet Alphaindex Dictionaries 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-14592
The CWJoomla CW Article Attachments PRO extension prior to 2.0.7 and CW Article Attachments FREE extension prior to 1.0.6 for Joomla! allow SQL Injection within download.php.
Cwjoomla Cw Article Attachments Pro
Cwjoomla Cw Article Attachments Free
1 EDB exploit
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »