Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
echoll vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-0702
SQL injection vulnerability in the Phoca Documentation (com_phocadocumentation) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a section action to index.php.
Phoca Com Phocadocumentation -
1 EDB exploit
7.5
CVSSv2
CVE-2008-5875
SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation System (aka HBS) for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php.
Joomlahbs Com Lowcosthotels Nil
Joomlahbs Hotel Booking Reservation System Nil
3 EDB exploits
7.5
CVSSv2
CVE-2008-5874
Multiple SQL injection vulnerabilities in the Hotel Booking Reservation System (aka HBS) for Joomla! allow remote malicious users to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php in the (1) com_allhotels or (2) com_5starhotels modul...
Joomlahbs Com 5starhotels Nil
Joomlahbs Com Allhotels Nil
Joomlahbs Hotel Booking Reservation System Nil
3 EDB exploits
7.5
CVSSv2
CVE-2008-5865
SQL injection vulnerability in the com_hbssearch component 1.0 in the Hotel Booking Reservation System (aka HBS) 1.0.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the r_type parameter in a showhoteldetails action to index.php.
Joomlahbs Hotel Booking Reservation System 1.0.0
4 EDB exploits
7.5
CVSSv2
CVE-2008-5864
SQL injection vulnerability in the Top Hotel (com_tophotelmodule) component 1.0 in the Hotel Booking Reservation System (aka HBS) 1.0.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php.
Joomlahbs Com Tophotelmodule 1.0.0
Joomlahbs Hotel Booking Reservation System 1.0.0
4 EDB exploits
7.5
CVSSv2
CVE-2008-5665
SQL injection vulnerability in index.php in the xhresim module in XOOPS allows remote malicious users to execute arbitrary SQL commands via the no parameter.
Xoops Xoops
1 EDB exploit
7.5
CVSSv2
CVE-2008-5321
SQL injection vulnerability in index.php in GesGaleri, a module for XOOPS, allows remote malicious users to execute arbitrary SQL commands via the no parameter.
Xoops Hocasi Gesgaleri Nil
1 EDB exploit
7.5
CVSSv2
CVE-2008-4653
SQL injection vulnerability in makale.php in Makale 0.26 and possibly other versions, a module for XOOPS, allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
Xoops Makale 0.26
1 EDB exploit
6.4
CVSSv2
CVE-2007-6620
Directory traversal vulnerability in include/images.inc.php in Joovili 2.x allows remote malicious users to read arbitrary files via a .. (dot dot) in the picture parameter.
Joovili Joovili
1 EDB exploit
6.4
CVSSv2
CVE-2007-6621
Directory traversal vulnerability in joovili.images.php in Joovili 3.0.0 up to and including 3.0.6 allows remote malicious users to read arbitrary files via a .. (dot dot) in the picture parameter.
Joovili Joovili
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started