Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1470
Directory traversal vulnerability in the Web TV (com_webtv) component 1.0 for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Dev.pucit.edu.pk Com Webtv 1.0
1 EDB exploit
NA
CVE-2008-6882
Live Chat (com_livechat) component 1.0 for Joomla! allows remote malicious users to use the xmlhttp.php script as an open HTTP proxy to hide network scanning activities or scan internal networks via a GET request with a full URL in the query string.
Joompolitan Com Livechat 1.0
1 EDB exploit
NA
CVE-2009-3817
PHP remote file inclusion vulnerability in doc/releasenote.php in the BookLibrary (com_booklibrary) component 1.0 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter, a different vector than CVE-2009-2637. NOT...
Ordasoft Com Booklibrary 1.0
1 EDB exploit
NA
CVE-2010-0796
SQL injection vulnerability in the JE Quiz (com_jequizmanagement) component 1.b01 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the eid parameter in a question action to index.php.
Harmistechnology Com Jeeventcalendar 1.0
1 EDB exploit
NA
CVE-2009-3822
PHP remote file inclusion vulnerability in Fiji Web Design Ajax Chat (com_ajaxchat) component 1.0 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[mosConfig_absolute_path] parameter to tests/ajcuser.php.
Fijiwebdesign Com Ajaxchat 1.0
1 EDB exploit
NA
CVE-2008-6841
PHP remote file inclusion vulnerability in the Green Mountain Information Technology and Consulting Database Query (com_dbquery) component 1.4.1.1 and previous versions for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_pat...
Gmitc Com Dbquery 1.0
Gmitc Com Dbquery
1 EDB exploit
NA
CVE-2008-6148
SQL injection vulnerability in the Live Ticker (com_liveticker) module 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the tid parameter in a viewticker action to index.php.
Raven-worx Liveticker 1.0
1 EDB exploit
NA
CVE-2010-1354
Directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Ternaria Com Vjdeo 1.0
Ternaria Com Vjdeo 1.0.1
1 EDB exploit
NA
CVE-2008-1460
SQL injection vulnerability in the Joovideo (com_joovideo) 1.0 and 1.2.2 component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
Joomlapixel Com Joovideo 1.2.2
Joomlapixel Com Joovideo 1.0
1 EDB exploit
NA
CVE-2010-4949
Cross-site scripting (XSS) vulnerability in the (1) FreiChat component prior to 2.1.2 for Joomla! and the (2) FreiChatPure component prior to 1.2.2 for Joomla! allows remote malicious users to inject arbitrary web script or HTML by entering it in an unspecified window.
Evnix Freichat
Evnix Freichat 2.0
Evnix Freichat 2.1
Evnix Freichat 1.0
Evnix Freichatpure
Evnix Freichatpure 1.0
Evnix Freichatpure 1.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »