Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joomla joomla 1.0.9 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-6006
SQL Injection exists in the JS Autoz 1.0.9 component for Joomla! via the vtype, pre, or prs parameter.
Joomsky Js Autoz 1.0.9
1 EDB exploit
9.8
CVSSv3
CVE-2016-1000123
Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla
Huge-it Video Gallery 1.0.9
1 EDB exploit
8.8
CVSSv3
CVE-2017-11364
The CMS installer in Joomla! prior to 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs.
Joomla Joomla\\! 1.0.13
Joomla Joomla\\! 1.0.14
Joomla Joomla\\! 1.0.15
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.16
Joomla Joomla\\! 1.6
Joomla Joomla\\! 1.6.1
Joomla Joomla\\! 1.6.2
Joomla Joomla\\! 1.6.3
Joomla Joomla\\! 1.6.4
Joomla Joomla\\! 2.5.5
Joomla Joomla\\! 1.0.1
Joomla Joomla\\! 1.0.3
Joomla Joomla\\! 1.0.10
Joomla Joomla\\! 1.0.12
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.12
7.2
CVSSv3
CVE-2016-1000122
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension
Huge-it Slider 1.0.9
4.8
CVSSv3
CVE-2016-1000121
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension
Huge-it Slider 1.0.9
NA
CVE-2013-7219
SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component prior to 1.0.9 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the answer_id[] parameter.
2glux Com Sexypolling
2glux Com Sexypolling 1.0.1
2glux Com Sexypolling 0.9.7
2glux Com Sexypolling 1.0.5
2glux Com Sexypolling 1.0.4
2glux Com Sexypolling 0.9.4
2glux Com Sexypolling 0.9.2
2glux Com Sexypolling 1.0.3
2glux Com Sexypolling 1.0.2
2glux Com Sexypolling 0.9.1
2glux Com Sexypolling 1.0.7
2glux Com Sexypolling 1.0.6
2glux Com Sexypolling 0.9.6
2glux Com Sexypolling 0.9.5
1 EDB exploit
NA
CVE-2006-7247
SQL injection vulnerability in the Weblinks (com_weblinks) component for Joomla! and Mambo 1.0.9 and previous versions allows remote malicious users to execute arbitrary SQL commands via the title parameter.
Joomla Com Weblinks
1 EDB exploit
NA
CVE-2011-5099
SQL injection vulnerability in helper/popup.php in the ccNewsletter (mod_ccnewsletter) component 1.0.7 up to and including 1.0.9 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Chillcreations Mod Ccnewsletter 1.0.9
Chillcreations Mod Ccnewsletter 1.0.7
Chillcreations Mod Ccnewsletter 1.0.8
1 EDB exploit
NA
CVE-2010-1531
Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the view parameter to index.php.
Redcomponent Com Redshop 1.0.8
Redcomponent Com Redshop 1.0.7
Redcomponent Com Redshop 1.0.6
Redcomponent Com Redshop 1.0.12
Redcomponent Com Redshop 1.0.11
Redcomponent Com Redshop 1.0.3
Redcomponent Com Redshop 1.0.2
Redcomponent Com Redshop 1.0.10
Redcomponent Com Redshop 1.0.9
Redcomponent Com Redshop 1.0.1
Redcomponent Com Redshop 1.0
Redcomponent Com Redshop 1.0.5
Redcomponent Com Redshop 1.0.4
1 EDB exploit
NA
CVE-2010-1081
Directory traversal vulnerability in the Community Polls (com_communitypolls) component 1.5.2, and possibly earlier, for Core Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Corejoomla Com Communitypolls 1.5.1
Corejoomla Com Communitypolls 1.0.9
Corejoomla Com Communitypolls 1.0.4
Corejoomla Com Communitypolls 1.0.2
Corejoomla Com Communitypolls 1.0.8
Corejoomla Com Communitypolls 1.0.7
Corejoomla Com Communitypolls 1.0.6
Corejoomla Com Communitypolls 1.0.5
Corejoomla Com Communitypolls
Corejoomla Com Communitypolls 1.5.0
Corejoomla Com Communitypolls 1.0.3
Corejoomla Com Communitypolls 1.0.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »