Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
don tukulesto vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3434
SQL injection vulnerability in the Tupinambis (com_tupinambis) component 1.0 for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the proyecto parameter in a verproyecto action to index.php.
Onestopjoomla Com Tupinambis 1.0
1 EDB exploit
NA
CVE-2010-1949
SQL injection vulnerability in the Online News Paper Manager (com_jnewspaper) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the cid parameter to index.php. NOTE: some of these details are obtained from third party information.
Emultisoft Com Jnewspaper 1.0
1 EDB exploit
NA
CVE-2010-1950
SQL injection vulnerability in the Online News Paper Manager (com_jnewspaper) component 1.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the date_info parameter to index.php. NOTE: the provenance of this infor...
Emultisoft Com Jnewspaper 1.0
1 EDB exploit
NA
CVE-2009-4784
SQL injection vulnerability in the Joaktree (com_joaktree) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the treeId parameter to index.php.
Joaktree Com Joaktree 1.0
1 EDB exploit
NA
CVE-2009-4785
SQL injection vulnerability in the Quick News (com_quicknews) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the newsid parameter in a view_item action to index.php.
Bhavesh Chauhan Com Quicknews
1 EDB exploit
NA
CVE-2009-4604
PHP remote file inclusion vulnerability in mamboleto.php in the Fernando Soares Mamboleto (com_mamboleto) component 2.0 RC3 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Fernando Soares Com Mamboleto 2.0
1 EDB exploit
NA
CVE-2010-4774
SQL injection vulnerability in pdf.php in AuraCMS 1.62 allows remote malicious users to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-4804 and CVE-2007-4171.
Auracms Auracms 1.62
1 EDB exploit
NA
CVE-2009-3333
PHP remote file inclusion vulnerability in koesubmit.php in the koeSubmit (com_koesubmit) component 1.0 for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Alibasta Com Koesubmit 1.0
1 EDB exploit
NA
CVE-2009-3835
SQL injection vulnerability in the JShop (com_jshop) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a product action to index.php.
Whorl Ltd Jshop
1 EDB exploit
NA
CVE-2009-4217
SQL injection vulnerability in the Itamar Elharar MusicGallery (com_musicgallery) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in an itempage action to index.php. NOTE: the provenance of this information is unknown; th...
Itamar Elharar Com Musicgallery
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »