EUVD-2009-1277

Malware in sbrugna...

CVE-2011-2509

Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.6.4 allow remote attackers to inject arbitrary web script or HTML via 1 the query string to the comcontact component, as demonstrated by the Itemid parameter to index.php; 2 the query string to the comcontent component, as...

CVE-2011-2710

Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.7.0 allow remote attackers to inject arbitrary web script or HTML via 1 the URI to includes/application.php, reachable through index.php; and, when Internet Explorer or Konqueror is used, 2 allow remote attackers to inject...

Joomla! 1.7.0-RC and lower | Multiple Cross Site Scripting (XSS) Vulnerabilities

No description provided by source. component: comsearch, parameter: searchword Browser: IE, Konqueror ===================================================================== N.B. Our previous reported issue 1.6.3 of "searchword" parameter XSS was not fixed completely. REQUEST POST...

CVE-2007-6272

Multiple SQL injection vulnerabilities in index.php in Joomla! 1.5 RC3 allow remote attackers to execute arbitrary SQL commands via 1 the view parameter to the comcontent component, 2 the task parameter to the comsearch component, or 3 the option parameter in a search action to the comsearch...

Sql injection

Multiple eval injection vulnerabilities in the comsearch component in Joomla! 1.5 beta before RC1 aka Mapya allow remote attackers to execute arbitrary PHP code via PHP sequences in the searchword parameter, related to defaultresults.php in 1 components/comsearch/views/search/tmpl/ and 2...