Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mojoomla vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2024-9941
The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the MJ_gmgt_add_staff_member() function in all versions up to, and including, 67.1.0. This makes it possible for authenticated attackers, wi...
Mojoomla Wordpress Gym Management System
9.8
CVSSv3
CVE-2024-9942
The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the MJ_gmgt_user_avatar_image_upload() function in all versions up to, and including, 67.1.0. This makes it possible for unauthenticated...
Mojoomla Wordpress Gym Management System
8.8
CVSSv3
CVE-2017-14843
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
Dasinfomedia School Management System -
1 EDB exploit
8.8
CVSSv3
CVE-2017-14844
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
Dasinfomedia Wpgym Gym Management System -
1 EDB exploit
8.8
CVSSv3
CVE-2017-14846
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
Dasinfomedia Hospital Management System -
1 EDB exploit
8.8
CVSSv3
CVE-2017-14842
Mojoomla SMSmaster Multipurpose SMS Gateway for WordPress allows SQL Injection via the id parameter.
Dasinfomedia Smsmaster Multipurpose Sms Gateway -
1 EDB exploit
8.8
CVSSv3
CVE-2017-14845
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
Dasinfomedia Wpchurch Church Management System -
1 EDB exploit
8.8
CVSSv3
CVE-2017-14847
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
Dasinfomedia Wpams Apartment Management System -
1 EDB exploit
6.5
CVSSv3
CVE-2017-14841
Mojoomla Annual Maintenance Contract (AMC) Management System allows Arbitrary File Upload in profilesetting image handling.
Dasinfomedia Annual Maintenance Contract Management System -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
local
IMAP
CVE-2024-8504
CVE-2024-42327
CVE-2024-11904
CVE-2024-47107
CVE-2024-53143
XML injection
CVE-2024-54750
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started