CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

271 matches found

RedhatCVE•added 2026/01/09 11:54 a.m.•3 views

CVE-2009-4233

Cross-site scripting XSS vulnerability in modules/modyjwhois.php in the YJ Whois component 1.0x and 1.5.x for Joomla! allows remote attackers to inject arbitrary web script or HTML via the domain parameter to index.php. NOTE: some of these details are obtained from third party information...

4.3CVSS6AI score0.00296EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:50 a.m.•4 views

CVE-2009-4232

The Kide Shoutbox comkide component 0.4.6 for Joomla! does not properly perform authentication, which allows remote attackers to post messages with an arbitrary account name via an insertar action to index.php. NOTE: the provenance of this information is unknown; the details are obtained solely...

5CVSS7AI score0.00267EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:48 a.m.•7 views

CVE-2009-4104

SQL injection vulnerability in Lyften Designs LyftenBloggie comlyftenbloggie component 1.0.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the author parameter to index.php...

7.5CVSS8.8AI score0.00151EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:51 a.m.•8 views

CVE-2020-10238

An issue was discovered in Joomla! before 3.9.16. Various actions in comtemplates lack the required ACL checks, leading to various potential attack vectors...

7.5CVSS6.7AI score0.12641EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:28 a.m.•10 views

CVE-2019-12765

An issue was discovered in Joomla! before 3.9.7. The CSV export of comactionslogs is vulnerable to CSV injection...

9.8CVSS6.7AI score0.2398EPSS

Exploits1References1