6 matches found
EUVD-2009-1277
Malware in sbrugna...
Joomla Admin 3.7.4 Database Disclosure Vulnerability
Joomla comadmin component versions 2.5.4 through 3.7.4 suffer from a database disclosure vulnerability. Exploit Title : Joomla comadmin Components from V2.5.4 to V3.7.4 Database Backup Arbitrary File Download Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army...
Joomla Core com_admin Component SQL Injection (CVE-2018-6376)
A SQL injection vulnerability exists in Joomla Core comadmin component. The vulnerability is due to a lack of type casting on a variable used in a SQL statement. A remote attacker can exploit this vulnerability to escalate their privilege...
CVE-2009-1279
Multiple cross-site scripting XSS vulnerabilities in Joomla! 1.5 through 1.5.9 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to the 1 comadmin component, 2 comsearch component when "Gather Search Statistics" is enabled, and 3 the category view in the...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Joomla! 1.5 through 1.5.9 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to the 1 comadmin component, 2 comsearch component when "Gather Search Statistics" is enabled, and 3 the category view in the...
[20090301] - Core - Multiple XSS/CSRF
A series of XSS and CSRF faults exist in the administrator application. Affected administrator components include comadmin, commedia, comsearch. Both comadmin and comsearch contain XSS vulnerabilities, and commedia contains 2 CSRF vulnerabilities...