CVE-2011-4912

Joomla! commailto 1.5.x through 1.5.13 has an automated mail timeout bypass...

CVE-2011-4912

CVE-2011-4912 affects Joomla! com_mailto 1.5.x through 1.5.13 and is characterized by an automated mail timeout bypass. The connected records reiterate the same issue across multiple sources. The documents do not provide concrete exploit details, affected configuration specifics, or a remediation...

Joomla! Spam Mail Relay Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Spam Mail Relay Date: 11 Jan 2011 Author: Jeff Channell Software Link: http://www.joomla.org/ Versions: 1.5.22, 1.6.0 Joomla! 1.5.22 & 1.6.0 both allow spam email to be relayed to unsuspecting victims via the core...

Joomla! 1.5.22 1.6.0 - com_mailto Spam Mail Relay

Joomla! 1.5.22 1.6.0 - commailto Spam Mail Relay Exploit Title: Joomla! Spam Mail Relay Date: 11 Jan 2011 Author: Jeff Channell Software Link: http://www.joomla.org/ Versions: 1.5.22, 1.6.0 Joomla! 1.5.22 & 1.6.0 both allow spam email to be relayed to unsuspecting victims via the core commailto...

Joomla! 1.5.22 / 1.6.0 - 'com_mailto' Spam Mail Relay

Exploit Title: Joomla! Spam Mail Relay Date: 11 Jan 2011 Author: Jeff Channell Software Link: http://www.joomla.org/ Versions: 1.5.22, 1.6.0 Joomla! 1.5.22 & 1.6.0 both allow spam email to be relayed to unsuspecting victims via the core commailto component. Tested using the following URL:...

Joomla! Spam Mail Relay

Exploit Title: Joomla! Spam Mail Relay Date: 11 Jan 2011 Author: Jeff Channell Software Link: http://www.joomla.org/ Versions: 1.5.22, 1.6.0 Joomla! 1.5.22 & 1.6.0 both allow spam email to be relayed to unsuspecting victims via the core commailto component. Tested using the following URL:...

Joomla! Component com_mailto - Multiple Cross-Site Scripting Vulnerabilities

Joomla! Component commailto - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/45356/info The 'commailto' component for Joomla! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker m...

FreeBSD : joomla15 -- com_mailto Timeout Issue (739b94a4-838b-11de-938e-003048590f9e)

Joomla! Security Center reports : In commailto, it was possible to bypass timeout protection against sending automated emails. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...

[20090723] - Core - com_mailto Timeout Issue

In commailto, it was possible to bypass timeout protection against sending automated emails...

joomla15 -- com_mailto Timeout Issue

Joomla! Security Center reports: In commailto, it was possible to bypass timeout protection against sending automated emails...

CVE-2009-1499

The CVE-2009-1499 entry describes an SQL injection in the Joomla! MailTo (com_mailto) component. The vulnerability allows remote attackers to execute arbitrary SQL commands via the article parameter in index.php, indicating a remote‑code capable injection affecting the application’s database quer...

Design/Logic Flaw

The mailto aka commailto component in Joomla! 1.5 before 1.5.7 sends e-mail messages without validating the URL, which allows remote attackers to transmit spam...

CVE-2008-4103

The CVE-2008-4103 issue affects Joomla! 1.5 before 1.5.7, where the mailto (com_mailto) component sends e‑mails without validating the URL, enabling remote attackers to transmit spam. The root cause is lack of URL validation in this component, as described in the NVD entry. No further remediation...