Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0.6 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-14592
The CWJoomla CW Article Attachments PRO extension prior to 2.0.7 and CW Article Attachments FREE extension prior to 1.0.6 for Joomla! allow SQL Injection within download.php.
Cwjoomla Cw Article Attachments Free
Cwjoomla Cw Article Attachments Pro
1 EDB exploit
1 Github repository
8.8
CVSSv3
CVE-2017-11364
The CMS installer in Joomla! prior to 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs.
Joomla Joomla! 1.0.5
Joomla Joomla! 3.4.0
Joomla Joomla! 3.5.0
Joomla Joomla! 1.6
Joomla Joomla! 1.6.4
Joomla Joomla! 2.5.19
Joomla Joomla! 3.6.0
Joomla Joomla! 2.5.7
Joomla Joomla! 3.7.3
Joomla Joomla! 2.5.17
Joomla Joomla! 1.5.24
Joomla Joomla! 3.1.4
Joomla Joomla! 3.1.3
Joomla Joomla! 1.7.1
Joomla Joomla! 3.3.3
Joomla Joomla! 3.7.0
Joomla Joomla! 2.5.25
Joomla Joomla! 1.0.9
Joomla Joomla! 1.5.26
Joomla Joomla! 1.5.11
Joomla Joomla! 3.2.1
Joomla Joomla! 1.5.25
9.8
CVSSv3
CVE-2016-1000124
Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6
Huge-it Portfolio Gallery 1.0.6
1 EDB exploit
NA
CVE-2013-7219
SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component prior to 1.0.9 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the answer_id[] parameter.
2glux Com Sexypolling 1.0.3
2glux Com Sexypolling 0.9.7
2glux Com Sexypolling 0.9.6
2glux Com Sexypolling 1.0.4
2glux Com Sexypolling 1.0.2
2glux Com Sexypolling 0.9.4
2glux Com Sexypolling 1.0.7
2glux Com Sexypolling
2glux Com Sexypolling 0.9.1
2glux Com Sexypolling 1.0.1
2glux Com Sexypolling 1.0.5
2glux Com Sexypolling 0.9.5
2glux Com Sexypolling 0.9.2
2glux Com Sexypolling 1.0.6
1 EDB exploit
NA
CVE-2011-5004
Unrestricted file upload vulnerability in models/importcsv.php in the Fabrik (com_fabrik) component prior to 2.1.1 for Joomla! allows remote authenticated users with Manager privileges to execute arbitrary code by uploading a file with an executable extension, then accessing it v...
Fabrikar Com Fabrikar
Fabrikar Com Fabrikar 1.0.1
Fabrikar Com Fabrikar 1.0.6
Fabrikar Com Fabrikar 2.0.2
Fabrikar Com Fabrikar 2.0.4
Fabrikar Com Fabrikar 2.0.5
NA
CVE-2010-1718
Directory traversal vulnerability in archeryscores.php in the Archery Scores (com_archeryscores) component 1.0.6 for Joomla! allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
Lispeltuut Com Archeryscores 1.0.6
1 EDB exploit
NA
CVE-2010-1653
Directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these detai...
Htmlcoderhelper Com Graphics 1.0.6
Htmlcoderhelper Com Graphics 1.5.0
1 EDB exploit
NA
CVE-2010-1531
Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the view parameter to index.php.
Redcomponent Com Redshop 1.0
Redcomponent Com Redshop 1.0.1
Redcomponent Com Redshop 1.0.2
Redcomponent Com Redshop 1.0.3
Redcomponent Com Redshop 1.0.4
Redcomponent Com Redshop 1.0.5
Redcomponent Com Redshop 1.0.6
Redcomponent Com Redshop 1.0.7
Redcomponent Com Redshop 1.0.8
Redcomponent Com Redshop 1.0.9
Redcomponent Com Redshop 1.0.10
Redcomponent Com Redshop 1.0.11
Redcomponent Com Redshop 1.0.12
1 EDB exploit
NA
CVE-2010-1081
Directory traversal vulnerability in the Community Polls (com_communitypolls) component 1.5.2, and possibly earlier, for Core Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Corejoomla Com Communitypolls
Corejoomla Com Communitypolls 1.0.1
Corejoomla Com Communitypolls 1.0.2
Corejoomla Com Communitypolls 1.0.3
Corejoomla Com Communitypolls 1.0.4
Corejoomla Com Communitypolls 1.0.5
Corejoomla Com Communitypolls 1.0.6
Corejoomla Com Communitypolls 1.0.7
Corejoomla Com Communitypolls 1.0.8
Corejoomla Com Communitypolls 1.0.9
Corejoomla Com Communitypolls 1.5.0
Corejoomla Com Communitypolls 1.5.1
1 EDB exploit
NA
CVE-2008-6299
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5.7 and previous versions allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) the title and description parameters to the com_weblinks module and (2) unspecified v...
Joomla Joomla 1.5.5
Joomla Joomla 1.0.13
Joomla Joomla 1.0.9
Joomla Joomla 1.5
Joomla Joomla 1.5.0 Rc1
Joomla Joomla
Joomla Joomla 1.5.0 Beta2
Joomla Joomla 1.0
Joomla Joomla 1.5.0
Joomla Joomla 1.5.3
Joomla Joomla 1.5.2
Joomla Joomla 1.0.1
Joomla Joomla 1.0.3
Joomla Joomla 1.0.6
Joomla Joomla 1.0.8
Joomla Joomla 1.0.4
Joomla Joomla 1.0.2
Joomla Joomla 1.5.0 Beta
Joomla Joomla 1.0.10
Joomla Joomla 1.5.0 Beta1
Joomla Joomla 1.5.1
Joomla Joomla 1.5rc4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »