Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.5 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2010-2923
SQL injection vulnerability in the YouTube (com_youtube) component 1.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id_cate parameter to index.php.
Prasanna Com Youtube 1.5
1 EDB exploit
505
VMScore
CVE-2010-1314
Directory traversal vulnerability in the Highslide JS (com_hsconfig) component 1.5 and 2.0.9 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party in...
Joomlanook Com Hsconfig 1.5
Joomlanook Com Hsconfig 2.0.9
1 EDB exploit
755
VMScore
CVE-2009-3316
SQL injection vulnerability in the JReservation (com_jreservation) component 1.0 and 1.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a propertycpanel action to index.php.
Jforjoomla Com Jreservation 1.5
Jforjoomla Com Jreservation 1.0
1 EDB exploit
312
VMScore
CVE-2018-18276
XSS exists in the ProFiles 1.5 component for Joomla! via the name or path parameter when creating a new folder in the administrative panel.
Profiles Project Profiles 1.5
668
VMScore
CVE-2010-2851
SQL injection vulnerability in the BookLibrary From Same Author (com_booklibrary) module 1.5 and possibly earlier for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a view action to index.php.
Ordasoft Com Booklibrary 1.5
685
VMScore
CVE-2010-1474
Directory traversal vulnerability in the Sweety Keeper (com_sweetykeeper) component 1.5.x for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Supachai Teasakul Com Sweetykeeper
1 EDB exploit
510
VMScore
CVE-2008-6222
Directory traversal vulnerability in the Pro Desk Support Center (com_pro_desk) component 1.0 and 1.2 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the include_file parameter to index.php.
Joomlashowroom Pro Desk Support Center 1.0
Joomlashowroom Pro Desk Support Center 1.2
2 EDB exploits
755
VMScore
CVE-2008-0916
SQL injection vulnerability in the Highwood Design hwdVideoShare (com_hwdvideoshare) 1.1.3 Alpha component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter in a viewcategory action to index.php.
Highwood Design Hwdvideoshare
1 EDB exploit
505
VMScore
CVE-2010-1312
Directory traversal vulnerability in the iJoomla News Portal (com_news_portal) component 1.5.x for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Ijoomla Com News Portal 1.5.7
Ijoomla Com News Portal 1.5.6
Ijoomla Com News Portal 1.5.3
Ijoomla Com News Portal 1.5.2
Ijoomla Com News Portal 1.5.1
1 EDB exploit
668
VMScore
CVE-2010-0635
SQL injection vulnerability in the plgSearchEventsearch::onSearch method in eventsearch.php in the JEvents Search plugin 1.5 up to and including 1.5.3 for Joomla! allows remote malicious users to execute arbitrary SQL commands via unspecified vectors. NOTE: some of these details ...
Jevents Jevents Search Plugin 1.5
Jevents Jevents Search Plugin 1.5.1
Jevents Jevents Search Plugin 1.5.2
Jevents Jevents Search Plugin 1.5.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »