30 matches found
EUVD-2010-5239
Malware in sbrugna...
EUVD-2008-2090
Malware in sbrugna...
Joomla ComProfiler Community Builder 2.4.0 Database Disclosure / SQL Injection
Exploit Title : Joomla ComProfiler Community Builder Components 2.4.0 SQL Injection / Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 03/02/2019 Vendor Homepage : joomlapolis.com Software Download Link : joomlapolis.com/downloads Software...
Community Builder, 2.4.2
Community Builder, 2.4.1 and previous, resolution: update to 2.4.2 update notice: https://www.joomlapolis.com/news/18843-community-builder-2-4-2-security-maintenance-and-features-release...
Community Builder, 2.1.4, XSS
Community Builder, 2.1.4 and previous, XSS Cross site scripting resolution: update to 2.1.5 update notice: https://www.joomlapolis.com/news/18791-community-builder-2-1-5-security-and-maintenance-release...
Community Builder versions 2.1 and previous
Community Builder Versions 2.1.0 and previous contain versions of 3rd party libraries with known vulnerabilities: PHPMailer and Guzzle Release 2.1.1 updates to version 5.2.22 of PHP Mailer provides custom fix for Guzzle library Developer states that this is precautionary only, and that these...
Joomla Community Builder Enhenced (CBE) Component LFI/RCE Vulnerability
No description provided by source. Description: Joomla CBE suffers from a local file inclusion vulnerability. As CBE also offers file uploading functionality that allows to upload files that contain php-code, this can be used to execute arbitary system-commands on the host with the webservers...
Joomla Community Builder <= 1.0.1 - Blind SQL Injection Vulnerability
No description provided by source. Joomla Component Profiler Blind SQL Injection Vulnerability found by: $hur!k'n Contact: [email protected] ScriptName: Joomla ModuleName: Profiler Version: ? DORK: allinurl:comcomprofiler Exploit: /index.php?option=comcomprofiler&task=userProfile&user=SQL...
Directory traversal
Directory traversal vulnerability in the Community Builder Enhanced CBE comcbe component 1.4.8, 1.4.9, and 1.4.10 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. dot dot in the tabname parameter in a userProfile action to index.php. NOTE: this can be...
CVE-2010-5280
Directory traversal vulnerability in the Community Builder Enhanced CBE comcbe component 1.4.8, 1.4.9, and 1.4.10 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. dot dot in the tabname parameter in a userProfile action to index.php. NOTE: this can be...
CVE-2010-5280
The CVE-2010-5280 entry describes a directory traversal (Local File Inclusion) in Joomla!’s Community Builder Enhanced (CBE) component (com_cbe) versions 1.4.8–1.4.10. The vulnerability allows remote attackers to include and execute arbitrary local files by supplying .. in the tabname parameter o...
CVE-2010-5280
Directory traversal vulnerability in the Community Builder Enhanced CBE comcbe component 1.4.8, 1.4.9, and 1.4.10 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. dot dot in the tabname parameter in a userProfile action to index.php. NOTE: this can be...
Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities
OVERVIEW Etano 1.x versions are vulnerable to Cross Site Scripting. 2. BACKGROUND The community builder script we provide - Etano - was built entirely based on requests from customers of our previous dating package Dating Site Builder. Almost every feature ever requested was built into Etano to...
Wiccle Web Builder CMS and iWiccle CMS Community Builder Multiple XSS Vulnerabilities
Wiccle Web Builder and iWiccle CMS Community Builder are prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Joomla! Component A Cool Debate 1.0.3 - Local File Inclusion
A Cool Debate 1.0.3 Component Joomla Local File Inclusion ========================================================================================= - Discovered by : Chip D3 Bi0s - Email : chipdebiosatgmaildotcom - Group : LatinHackTeam - Date : 18 june 2011 - Where : From Remote...
Joomla A Cool Debate 1.0.3 Local File Inclusion
A Cool Debate 1.0.3 Component Joomla Local File Inclusion ========================================================================================= - Discovered by : Chip D3 Bi0s - Email : chipdebiosatgmaildotcom - Group : LatinHackTeam - Date : 18 june 2011 - Where : From Remote...
LFI / RCE vlunerability in Joomla Community Builder Enhenced (CBE) Component
Hello full-disclosure! Description: Joomla CBE suffers from a local file inclusion vulnerability. As CBE also offers file uploading functionality that allows to upload files that contain php-code, this can be used to execute arbitary system-commands on the host with the webservers privileges. Ris...
Joomla Community Builder Enhanced Local File Inclusion
Hello full-disclosure! Description: Joomla CBE suffers from a local file inclusion vulnerability. As CBE also offers file uploading functionality that allows to upload files that contain php-code, this can be used to execute arbitary system-commands on the host with the webservers privileges. Ris...
Joomla Community Builder Enhenced Component LFI/RCE Vulnerability
Exploit for php platform in category web applications ======================================================================= Joomla Community Builder Enhenced CBE Component LFI/RCE Vulnerability ======================================================================= Description: Joomla CBE suffe...
Dolphin Smart Community Builder Sql Injection Vulnerability
Exploit for php platform in category web applications =========================================================== Dolphin Smart Community Builder Sql Injection Vulnerability =========================================================== 010101010101010101010101010101010101010101010101010101010 0 0 1...