Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-2627
SQL injection vulnerability in the IDoBlog (com_idoblog) component b24 and previous versions and 1.0, a component for Joomla!, allows remote malicious users to execute arbitrary SQL commands via the userid parameter in a userblog action to index.php.
Joomla Com Idoblog
1 EDB exploit
755
VMScore
CVE-2008-0918
SQL injection vulnerability in includes/count_dl_or_link.inc.php in the astatsPRO (com_astatspro) 1.0.1 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter to getfile.php, a different vector than CVE-2008-0839. NOTE: the prov...
Astats Astatspro 1.0.1
Joomla Com Astatspro 1.0.1
1 EDB exploit
685
VMScore
CVE-2006-4553
PHP remote file inclusion vulnerability in plugin.class.php in the com_comprofiler Components 1.0 RC2 for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Joomla Com Comprofiler Component 1.0 Rc2
Mambo Com Comprofiler Component 1.0 Rc2
1 EDB exploit
605
VMScore
CVE-2007-2196
PHP remote file inclusion vulnerability in jambook.php in the Jambook (com_Jambook) 1.0 beta7 module for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: this issue has been disputed by a relia...
Joomla Jambook 1.0 Beta 7
Mambo Jambook 1.0 Beta 7
760
VMScore
CVE-2010-2694
SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter to index.php.
Redcomponent Com Redshop 1.0
2 EDB exploits
505
VMScore
CVE-2018-6610
Information Leakage exists in the jLike 1.0 component for Joomla! via a task=getUserByCommentId request.
Jlike Project Jlike 1.0
1 EDB exploit
755
VMScore
CVE-2018-17397
SQL Injection exists in the AlphaIndex Dictionaries 1.0 component for Joomla! via the letter parameter.
Multiplanet Alphaindex Dictionaries 1.0
1 EDB exploit
755
VMScore
CVE-2008-6883
SQL injection vulnerability in the Live Chat (com_livechat) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the last parameter to getChatRoom.php. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
Joompolitan Com Livechat 1.0
1 EDB exploit
755
VMScore
CVE-2010-1952
Directory traversal vulnerability in the BeeHeard (com_beeheard) and BeeHeard Lite (com_beeheardlite) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Cmstactics Com Beeheard 1.0
Cmstactics Com Beeheardlite 1.0
1 EDB exploit
760
VMScore
CVE-2010-5028
SQL injection vulnerability in the JExtensions JE Job (com_jejob) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in an item action to index.php.
Harmistechnology Com Jejob 1.0
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »