Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chip d3 bi0s vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-3334
SQL injection vulnerability in the Lhacky! Extensions Cave Joomla! Integrated Newsletters Component (aka JINC or com_jinc) component 0.2 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the newsid parameter in a messages action to index.php.
Lhacky Com Jinc 0.2
1 EDB exploit
5
CVSSv2
CVE-2010-1858
Directory traversal vulnerability in the SMEStorage (com_smestorage) component prior to 1.1 for Joomla! allows remote malicious users to read arbitrary files via directory traversal sequences in the controller parameter to index.php.
Gelembjuk Com Smestorage
1 EDB exploit
7.5
CVSSv2
CVE-2010-1875
Directory traversal vulnerability in the Real Estate Property (com_properties) component 3.1.22-03 for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. NOTE: some ...
Com-property Com Properties 3.1.22-03
1 EDB exploit
7.5
CVSSv2
CVE-2010-2045
Directory traversal vulnerability in the Dione Form Wizard (aka FDione or com_dioneformwizard) component 1.0.2 for Joomla! allows remote malicious users to read arbitrary files via directory traversal sequences in the controller parameter to index.php.
Dionesoft Com Dioneformwizard 1.0.2
1 EDB exploit
6.8
CVSSv2
CVE-2009-4199
Multiple SQL injection vulnerabilities in the Mambo Resident (aka Mos Res or com_mosres) component 1.0f for Mambo and Joomla!, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) property_uid parameter in a viewproperty ac...
Mamboforge Com Mosres 1.0f
1 EDB exploit
7.5
CVSSv2
CVE-2009-2014
SQL injection vulnerability in the ComSchool (com_school) component 1.4 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the classid parameter in a showclass action to index.php.
Joomla Com School 1.4
1 EDB exploit
7.5
CVSSv2
CVE-2010-3426
Directory traversal vulnerability in jphone.php in the JPhone (com_jphone) component 1.0 Alpha 3 for Joomla! allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
4you-studio Com Jphone 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-2895
SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate (URA) 3.0 allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Phpsugar Ultimate Regnow Affiliate 3.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3316
SQL injection vulnerability in the JReservation (com_jreservation) component 1.0 and 1.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a propertycpanel action to index.php.
Jforjoomla Com Jreservation 1.5
Jforjoomla Com Jreservation 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3446
SQL injection vulnerability in the MyRemote Video Gallery (com_mytube) component 1.0 Beta for Joomla! allows remote malicious users to execute arbitrary SQL commands via the user_id parameter in a videos action to index.php.
Rick Estrada Com Mytube 1.0 Beta
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »