Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joobi vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2015-7342
JNews Joomla Component prior to 8.5.0 allows SQL injection via upload thumbnail, Queue Search Field, Subscribers Search Field, or Newsletters Search Field.
Joobi Jnews
10
CVSSv2
CVE-2010-5286
Directory traversal vulnerability in Jstore (com_jstore) component for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Joobi Com Jstore -
1 EDB exploit
6.5
CVSSv2
CVE-2015-7341
JNews Joomla Component prior to 8.5.0 allows arbitrary File Upload via Subscribers or Templates, as demonstrated by the .php5 extension.
Joobi Jnews
7.5
CVSSv2
CVE-2008-1427
SQL injection vulnerability in the Joobi Acajoom (com_acajoom) 1.1.5 and 1.2.5 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the mailingid parameter in a mailing view action to index.php.
Joobi Acajoom 1.1.5
Joobi Acajoom 1.2.5
Joomla Com Acajoom 1.1.5
Joomla Com Acajoom 1.2.5
1 EDB exploit
5
CVSSv2
CVE-2012-4256
The jNews (com_jnews) component 7.5.1 for Joomla! allows remote malicious users to obtain sensitive information via the emailsearch parameter, which reveals the installation path in an error message.
Joobi Com Jnews 7.5.1
3.5
CVSSv2
CVE-2015-7343
JNews Joomla Component prior to 8.5.0 has XSS via the mailingsearch parameter.
Joobi Jnews 8.3.1
4.3
CVSSv2
CVE-2013-1636
Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin prior to 1.6.3 for WordPress, JNews (com_jnews) component 8.0.1 for Joomla!, and CiviCRM 3.1.0 up to and including 4.2.9 and 4.3.0 u...
Blair Williams Pretty Link Lite 1.6.0
Blair Williams Pretty Link Lite 1.6.1
Blair Williams Pretty Link Lite
Joobi Com Jnews 8.0.1
Civicrm Civicrm 4.3.1
Civicrm Civicrm 3.1.1
Civicrm Civicrm 3.1.2
Civicrm Civicrm 3.2.2
Civicrm Civicrm 3.2.3
Civicrm Civicrm 3.3.6
Civicrm Civicrm 3.4.0
Civicrm Civicrm 4.1.5
Civicrm Civicrm 4.1.6
Civicrm Civicrm 4.2.7
Civicrm Civicrm 4.2.8
Civicrm Civicrm 4.3.3
Civicrm Civicrm 3.1.0
Civicrm Civicrm 3.2.0
Civicrm Civicrm 3.2.1
Civicrm Civicrm 3.3.3
Civicrm Civicrm 3.3.5
Civicrm Civicrm 4.1.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started