Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-6051
PHP remote file inclusion vulnerability in reporter.logic.php in the MosReporter (com_reporter) component for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Mamboxchange Mosreporter 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-4617
SQL injection vulnerability in the actualite module 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Pyxicom Actualite 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-4968
SQL injection vulnerability in the webmaster-tips.net Flash Gallery (com_wmtpic) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the Itemid parameter to index.php.
Webmaster-tips Com Wmtpic 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2010-1219
Directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote malicious users to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Com Janews Com Janews 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3063
SQL injection vulnerability in the Game Server (com_gameserver) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a gamepanel action to index.php.
Indianpulses Com Gameserver 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-3203
Directory traversal vulnerability in the PicSell (com_picsell) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the dflink parameter in a prevsell dwnfree action to index.php.
Xmlswf Com Picsell 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3054
SQL injection vulnerability in the Artetics.com Art Portal (com_artportal) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the portalid parameter to index.php.
Artetics Com Artportal 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2010-2147
Cross-site scripting (XSS) vulnerability in the My Car (com_mycar) component 1.0 for Joomla! allows remote malicious users to inject arbitrary web script or HTML via the modveh parameter to index.php.
Unisoft Com Mycar 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-2635
PHP remote file inclusion vulnerability in toolbar_ext.php in the RealEstateManager (com_realestatemanager) component 1.0 Basic for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Ordasoft Com Realestatemanager 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-2015
Directory traversal vulnerability in includes/file_includer.php in the Ideal MooFAQ (com_moofaq) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Ideal Com Moofaq 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »