Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kamtiez vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2009-3438
SQL injection vulnerability in the JoomlaFacebook (com_facebook) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a student action to index.php.
Witchakorn Kamolpornwijit Com Facebook
2 EDB exploits
755
VMScore
CVE-2010-2908
SQL injection vulnerability in the Joomdle (com_joomdle) component 0.24 and previous versions for Joomla! allows remote malicious users to execute arbitrary SQL commands via the course_id parameter in a detail action to index.php.
Joomdle Com Joomdle 0.23
Joomdle Com Joomdle 0.22
Joomdle Com Joomdle
Joomdle Com Joomdle 0.21
Joomdle Com Joomdle 0.2
1 EDB exploit
755
VMScore
CVE-2011-4570
SQL injection vulnerability in the Time Returns (com_timereturns) component 2.0 and possibly earlier versions for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a timereturns action to index.php.
Takeaweb Com Timereturns 2.0
1 EDB exploit
685
VMScore
CVE-2009-3694
Directory traversal vulnerability in config/config.php in ezRecipe-Zee 91, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the cfg[prePath] parameter.
Jdtmmsm Ezrecipe-zee 91
1 EDB exploit
755
VMScore
CVE-2009-3817
PHP remote file inclusion vulnerability in doc/releasenote.php in the BookLibrary (com_booklibrary) component 1.0 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter, a different vector than CVE-2009-2637. NOT...
Ordasoft Com Booklibrary 1.0
1 EDB exploit
755
VMScore
CVE-2009-4094
PHP remote file inclusion vulnerability in class/php/d4m_ajax_pagenav.php in the D4J eZine (com_ezine) component 2.1 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[mosConfig_absolute_path parameter.
Designforjoomla Com Ezine 2.1
1 EDB exploit
685
VMScore
CVE-2010-0678
PHP remote file inclusion vulnerability in includes/moderation.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the includes_directory parameter.
Katalog.hurricane Katalog Stron Hurricane 1.3.5
1 EDB exploit
755
VMScore
CVE-2010-0800
SQL injection vulnerability in the Ossolution Team Documents Seller (aka DMS) (com_dms) component 2.5.1 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the category_id parameter in a view_category action to index.php.
Joomservices Com Dms 2.5.1
1 EDB exploit
755
VMScore
CVE-2009-4789
Multiple PHP remote file inclusion vulnerabilities in the MojoBlog component RC 0.15 for Joomla! allow remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) wp-comments-post.php and (2) wp-trackback.php.
Mojoblog Mojoblog Rc0.15
1 EDB exploit
755
VMScore
CVE-2010-5056
SQL injection vulnerability in the GBU Facebook (com_gbufacebook) component 1.0.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the face_id parameter in a show_face action to index.php.
Gbu Grafici Com Gbufacebook 1.0.5
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »