Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-3771
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.0.4 allow remote malicious users to inject arbitrary web script or HTML via (1) "GET and other variables" and (2) "SEF".
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0
Joomla Joomla 1.0.1
7.5
CVSSv2
CVE-2005-3772
Multiple SQL injection vulnerabilities in Joomla! prior to 1.0.4 allow remote malicious users to execute arbitrary SQL commands via the (1) Itemid variable in the Polls modules and (2) multiple unspecified methods in the mosDBTable class.
Joomla Joomla 1.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
10
CVSSv2
CVE-2005-3773
Unspecified vulnerability in Joomla! prior to 1.0.4 has unknown impact and attack vectors, related to "Potential misuse of Media component file management functions."
Joomla Joomla 1.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
10
CVSSv2
CVE-2006-0303
Multiple unspecified vulnerabilities in the (1) publishing component, (2) Contact Component, (3) TinyMCE Compressor, and (4) other components in Joomla! 1.0.5 and previous versions have unknown impact and attack vectors.
Joomla Joomla 1.0
Joomla Joomla 1.0.2
Joomla Joomla 1.0.1
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
7.5
CVSSv2
CVE-2006-1049
Multiple SQL injection vulnerabilities in the Admin functionality in Joomla! 1.0.7 and previous versions allow remote authenticated administrators to execute arbitrary SQL commands via unknown attack vectors.
Joomla Joomla 1.0.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.3
Joomla Joomla 1.0.5
Joomla Joomla 1.0.6
Joomla Joomla
Joomla Joomla 1.0.2
Joomla Joomla 1.0.4
5
CVSSv2
CVE-2006-1048
Joomla! 1.0.7 and previous versions allows malicious users to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the (1) Weblink, (2) Polls, (3) Newsfeeds, (4) Weblinks, (5) Content, (6) Content Section, (7) Content Category, (8)...
Joomla Joomla 1.0.1
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0
Joomla Joomla 1.0.6
Joomla Joomla 1.0.7
10
CVSSv2
CVE-2006-1047
Unspecified vulnerability in the "Remember Me login functionality" in Joomla! 1.0.7 and previous versions has unknown impact and attack vectors.
Joomla Joomla 1.0.6
Joomla Joomla 1.0.1
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.0.0
Joomla Joomla 1.0.5
Joomla Joomla 1.0.7
5.8
CVSSv2
CVE-2006-3480
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.0.10 allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters involving the (1) getUserStateFromRequest function, and the (2) SEF and (3) com_messages modules.
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.7
Joomla Joomla 1.0.8
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.9
7.5
CVSSv2
CVE-2006-3481
Multiple SQL injection vulnerabilities in Joomla! prior to 1.0.10 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters involving the (1) "Remember Me" function, (2) "Related Items" module, and the (3) "Weblinks submiss...
Joomla Joomla 1.0
Joomla Joomla 1.0.1
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.7
Joomla Joomla 1.0.8
Joomla Joomla 1.0.9
7.5
CVSSv2
CVE-2006-7010
The mosgetparam implementation in Joomla! prior to 1.0.10, does not set a variable's data type to integer when the variable's default value is numeric, which has unspecified impact and attack vectors, which may permit SQL injection attacks.
Joomla Joomla 1.0.2
Joomla Joomla 1.0.3
Joomla Joomla 1.0.4
Joomla Joomla 1.0.5
Joomla Joomla 1.0.0
Joomla Joomla 1.0.7
Joomla Joomla 1.0.9
Joomla Joomla 1.0.1
Joomla Joomla 1.0.6
Joomla Joomla 1.0.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »