Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
virtuemart component for joomla vulnerabilities and exploits
(subscribe to this query)
3.8
CVSSv3
CVE-2025-25228
A SQL injection in VirtueMart component 1.0.0 - 4.4.7 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the product management area in backend.
Virtuemart.net Virtuemart Component For Joomla
7.2
CVSSv3
CVE-2016-10379
The VirtueMart com_virtuemart component 3.0.14 for Joomla! allows SQL injection by remote authenticated administrators via the virtuemart_paymentmethod_id or virtuemart_shipmentmethod_id parameter to administrator/index.php.
Virtuemart Virtuemart 3.0.14
7.5
CVSSv2
CVE-2008-6483
PHP remote file inclusion vulnerability in admin.googlebase.php in the Ecom Solutions VirtueMart Google Base (aka com_googlebase or Froogle) component 1.1 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Virtuemart-solutions Com Googlebase 1.1
1 EDB exploit
5.4
CVSSv3
CVE-2015-3619
Cross-site scripting (XSS) vulnerability in assets/js/vm2admin.js in the VirtueMart component prior to 3.0.8 for Joomla! allows remote malicious users to inject arbitrary web script or HTML via vectors involving a "double encode combination of first_name, last_name and compa...
Virtuemart Virtuemart
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
asterisk
wire-webapp
CVE-2025-4692
cyberdava
CVE-2024-13950
CVE-2025-40775
mobile dynamix
CVE-2024-13949
CVE-2024-13948
CVE-2025-4664
remote attackers
unauthorized
hard-coded
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon