Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jdownloads vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-10068
The jDownloads extension prior to 3.2.59 for Joomla! has XSS.
Jdownloads Jdownloads
1 EDB exploit
7.5
CVSSv3
CVE-2020-19447
SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter.
Jdownloads Jdownloads 3.2.63
7.5
CVSSv3
CVE-2020-19451
SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter.
Jdownloads Jdownloads 3.2.63
4.3
CVSSv3
CVE-2022-27909
In Joomla component 'jDownloads 3.9.8.2 Stable' the remote user can change some parameters in the address bar and see the names of other users' files
Jdownloads Jdownloads 3.9.8.2
7.5
CVSSv3
CVE-2020-19450
SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter.
Jdownloads Jdownloads 3.2.63
7.5
CVSSv3
CVE-2020-19455
SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter.
Jdownloads Jdownloads 3.2.63
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started