Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-4862
SQL injection vulnerability in the JExtensions JE Directory (com_jedirectory) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in an item action to index.php.
Harmistechnology Com Jedirectory 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-6051
PHP remote file inclusion vulnerability in reporter.logic.php in the MosReporter (com_reporter) component for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Mamboxchange Mosreporter 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-2015
Directory traversal vulnerability in includes/file_includer.php in the Ideal MooFAQ (com_moofaq) component 1.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Ideal Com Moofaq 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-4937
Multiple SQL injection vulnerabilities in the Amblog (com_amblog) component 1.0 for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) articleid or (2) catid parameter to index.php.
Robitbt Com Amblog 1.0
1 EDB exploit
9.3
CVSSv2
CVE-2008-1465
SQL injection vulnerability in the Detodas Restaurante (com_restaurante) 1.0 component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php, a different product than CVE-2008-0562.
Detodas Com Restaurante 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6489
SQL injection vulnerability in MyAlbum component (com_myalbum) 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the album parameter to index.php.
Huseyin Bora Abaci Com Myalbum 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-0795
SQL injection vulnerability in the JE Event Calendars (com_jeeventcalendar) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the event_id parameter in an event action to index.php.
Harmistechnology Com Jeeventcalendar 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-2148
SQL injection vulnerability in the My Car (com_mycar) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pagina parameter to index.php.
Unisoft Com Mycar 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2010-4517
SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component 1.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the char parameter in an item action to index.php.
Harmistechnology Com Jeauto 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3054
SQL injection vulnerability in the Artetics.com Art Portal (com_artportal) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the portalid parameter to index.php.
Artetics Com Artportal 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »