41 matches found
EUVD-2019-15827
Malware in sbrugna...
CVE-2011-2509
Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.6.4 allow remote attackers to inject arbitrary web script or HTML via 1 the query string to the comcontact component, as demonstrated by the Itemid parameter to index.php; 2 the query string to the comcontent component, as...
Joomla! < 3.9.11 Mail Submission Vulnerability
Joomla! is prone to inadequate checks in comcontact which could allow mail submission in disabled forms. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2019-15028
In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...
CVE-2019-15028
In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...
Design/Logic Flaw
In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...
CVE-2019-15028
In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...
CVE-2019-15028
CVE-2019-15028 affects Joomla! core prior to 3.9.11, where inadequate checks in the com_contact component can allow mail submission through disabled forms. Multiple connected sources confirm the issue as an improper access-control/validation problem in com_contact, enabling a remote attacker to s...
[20190801] - Core - Hardening com_contact contact form
Inadequate checks in comcontact could allowed mail submission in disabled forms...
Cross site scripting
An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...
CVE-2019-6261
An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...
CVE-2019-6261
An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...
CVE-2019-6261
An issue was discovered in Joomla! before 3.9.2. Inadequate escaping in comcontact leads to a stored XSS vulnerability...
Joomla! cross-site scripting vulnerability (CNVD-2019-14554)
Joomla! is a globally recognized content management system developed using PHP language and MySQL database, which can be implemented on various platforms such as Linux, Windows, MacOSX and so on. A cross-site scripting vulnerability exists in comcontact in Joomla! versions 2.5.0 through 3.9.1,...
Joomla! 2.5.x < 3.9.2 Multiple Vulnerabilities
According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - Stored XSS in modbanners affects Joomla 2.5.0 through 3.9.1 - Stored XSS in comcontact affects Joomla 2.5.0 through 3.9.1 - Stored XSS issue in the Global Configuration...
[20190102] - Core - Stored XSS in com_contact
Inadequate escaping in comcontact leads to a stored XSS vulnerability...
joomla3 -- vulnerabilitiesw
JSST reports: Inadequate escaping in modbanners leads to a stored XSS vulnerability. Inadequate escaping in comcontact leads to a stored XSS vulnerability Inadequate checks at the Global Configuration Text Filter settings allowed a stored XSS. Inadequate checks at the Global Configuration helpurl...
Joomla! < 3.8.13 Multiple Vulnerabilities
Joomla! is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; ifdescription...
CVE-2018-17859
An issue was discovered in Joomla! before 3.8.13. Inadequate checks in comcontact could allow mail submission in disabled forms...
Design/Logic Flaw
An issue was discovered in Joomla! before 3.8.13. Inadequate checks in comcontact could allow mail submission in disabled forms...