Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chip d3 bi0s vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2009-3334
SQL injection vulnerability in the Lhacky! Extensions Cave Joomla! Integrated Newsletters Component (aka JINC or com_jinc) component 0.2 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the newsid parameter in a messages action to index.php.
Lhacky Com Jinc 0.2
1 EDB exploit
505
VMScore
CVE-2010-1858
Directory traversal vulnerability in the SMEStorage (com_smestorage) component prior to 1.1 for Joomla! allows remote malicious users to read arbitrary files via directory traversal sequences in the controller parameter to index.php.
Gelembjuk Com Smestorage
1 EDB exploit
755
VMScore
CVE-2010-1875
Directory traversal vulnerability in the Real Estate Property (com_properties) component 3.1.22-03 for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. NOTE: some ...
Com-property Com Properties 3.1.22-03
1 EDB exploit
755
VMScore
CVE-2010-2045
Directory traversal vulnerability in the Dione Form Wizard (aka FDione or com_dioneformwizard) component 1.0.2 for Joomla! allows remote malicious users to read arbitrary files via directory traversal sequences in the controller parameter to index.php.
Dionesoft Com Dioneformwizard 1.0.2
1 EDB exploit
685
VMScore
CVE-2009-4199
Multiple SQL injection vulnerabilities in the Mambo Resident (aka Mos Res or com_mosres) component 1.0f for Mambo and Joomla!, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) property_uid parameter in a viewproperty ac...
Mamboforge Com Mosres 1.0f
1 EDB exploit
755
VMScore
CVE-2009-2014
SQL injection vulnerability in the ComSchool (com_school) component 1.4 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the classid parameter in a showclass action to index.php.
Joomla Com School 1.4
1 EDB exploit
755
VMScore
CVE-2010-3426
Directory traversal vulnerability in jphone.php in the JPhone (com_jphone) component 1.0 Alpha 3 for Joomla! allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
4you-studio Com Jphone 1.0
1 EDB exploit
755
VMScore
CVE-2009-2895
SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate (URA) 3.0 allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Phpsugar Ultimate Regnow Affiliate 3.0
1 EDB exploit
755
VMScore
CVE-2009-3316
SQL injection vulnerability in the JReservation (com_jreservation) component 1.0 and 1.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a propertycpanel action to index.php.
Jforjoomla Com Jreservation 1.5
Jforjoomla Com Jreservation 1.0
1 EDB exploit
755
VMScore
CVE-2009-3446
SQL injection vulnerability in the MyRemote Video Gallery (com_mytube) component 1.0 Beta for Joomla! allows remote malicious users to execute arbitrary SQL commands via the user_id parameter in a videos action to index.php.
Rick Estrada Com Mytube 1.0 Beta
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »