Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2007/02/06 12:0 a.m.54 views

joomla150beta-sql.txt

Hi, These bugs were published in full-disclosure about 2 weeks ago CVE : CVE-2007-0373, CVE-2007-0374 and CVE-2007-0375, CVE-2007-0387 . In Mambo 4.6.1 and Joomla 1.0.11 and 1.5 Beta , the 'id' parameter can cause sql injection when cancelling content editting . Other versions maybe affected too...

7.5CVSS6.5AI score0.11638EPSS
Exploits4
UbuntuCve
UbuntuCve
added 2007/01/19 11:28 p.m.17 views

CVE-2007-0375

Joomla! 1.5.0 Beta allows remote attackers to obtain sensitive information via a direct request for 1 plugins/user/example.php; 2 gmail.php, 3 example.php, or 4 ldap.php in plugins/authentication/; 5 modules/modmainmenu/menu.php; or other unspecified PHP scripts, which reveals the path in various...

5CVSS6AI score0.01761EPSS
Exploits2References1
Cvelist
Cvelist
added 2007/01/19 11:0 p.m.41 views

CVE-2007-0375

Joomla! 1.5.0 Beta allows remote attackers to obtain sensitive information via a direct request for 1 plugins/user/example.php; 2 gmail.php, 3 example.php, or 4 ldap.php in plugins/authentication/; 5 modules/modmainmenu/menu.php; or other unspecified PHP scripts, which reveals the path in various...

6.3AI score0.01761EPSS
Exploits2References8
CVE
CVE
added 2007/01/19 11:0 p.m.55 views

CVE-2007-0375

Joomla! 1.5.0 Beta is affected by CVE-2007-0375. Remote attackers can obtain sensitive information by directly requesting specific PHP scripts (e.g., plugins/user/example.php, gmail.php, example.php, ldap.php in plugins/authentication; modules/mod_mainmenu/menu.php). The root cause is a jimport f...

5CVSS6.3AI score0.01761EPSS
Exploits2References8Affected Software1
Rows per page
Query Builder