Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2010-1873

Published: 12/05/2010 Updated: 14/02/2024
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 760
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Com Jvehicles

Vulnerability Summary

SQL injection vulnerability in the Jvehicles (com_jvehicles) component 1.0, 2.0, and 2.1111 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the aid parameter in an agentlisting action to index.php. NOTE: some of these details are obtained from third party information.

Vulnerable Product Search on Vulmon Subscribe to Product

jvehicles com_jvehicles 1.0

jvehicles com_jvehicles 2.0

jvehicles com_jvehicles 2.1111

Exploits

Exploit DB: Joomla! Component Jvehicles - Local File Inclusion
--------------------------------------------------------------------------------- Joomla Component Jvehicles Local File Inclusion --------------------------------------------------------------------------------- Author : Chip D3 Bi0s Group : LatinHackTeam Email & msn : chipdebios@gmailcom Date : 31 March 2010 Critical Lvl : Moderate Impact ...
Exploit DB: Joomla! Component Jvehicles 1.0/2.0 - 'aid' SQL Injection
/************************************************************************** [!] Joomla Component Jvehicles (aid) SQL Injection Vulnerability [!] Author : Don Tukulesto (root@indonesiancodercom) [!] Homepage : indonesiancodercom [!] Date : Mon, April 12, 2010 [!] Tune in : antisecradiofm (choose your weapon) ********************** ...

References

CWE-89http://www.securityfocus.com/bid/39409http://packetstormsecurity.org/1004-exploits/joomlajvehicles-sql.txthttp://www.exploit-db.com/exploits/12190http://www.osvdb.org/63669http://indonesiancoder.org/joomla-component-jvehicles-aid-sql-injection-vulnerabilityhttp://secunia.com/advisories/39401https://exchange.xforce.ibmcloud.com/vulnerabilities/57774https://nvd.nist.govhttps://www.exploit-db.com/exploits/11997/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886insecure direct object referenceCVE-2024-34342file inclusionCVE-2024-34562CVE-2024-34347CVE-2024-26026CVE-2024-4647unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook