18 matches found
EUVD-2010-2852
Malware in sbrugna...
EUVD-2010-2850
Malware in sbrugna...
EUVD-2010-2851
Malware in sbrugna...
EUVD-2009-1817
Malware in sbrugna...
CVE-2010-2846
Cross-site scripting XSS vulnerability in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the afmsg parameter to index.php...
CVE-2010-2847
Multiple SQL injection vulnerabilities in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allow remote attackers to execute arbitrary SQL commands via the viewform parameter in a 1 ferforms or 2 tferforms action to index.php, and the 3 id parameter in a vferforms action to...
CVE-2010-2848
Directory traversal vulnerability in assets/captcha/includes/alikon/playcode.php in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the l parameter...
Sql injection
Multiple SQL injection vulnerabilities in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allow remote attackers to execute arbitrary SQL commands via the viewform parameter in a 1 ferforms or 2 tferforms action to index.php, and the 3 id parameter in a vferforms action to...
Cross site scripting
Cross-site scripting XSS vulnerability in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the afmsg parameter to index.php...
CVE-2010-2847
The CVE-2010-2847 entry refers to multiple SQL injection vulnerabilities in the InterJoomla ArtForms (com_artforms) component version 2.1b7.2 RC2 for Joomla!. The flaws permit remote attackers to execute arbitrary SQL commands via the viewform parameter in actions such as ferforms, tferforms (to ...
CVE-2010-2848
Directory traversal vulnerability in assets/captcha/includes/alikon/playcode.php in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the l parameter...
CVE-2010-2846
Cross-site scripting XSS vulnerability in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the afmsg parameter to index.php...
CVE-2010-2847
Multiple SQL injection vulnerabilities in the InterJoomla ArtForms comartforms component 2.1b7.2 RC2 for Joomla! allow remote attackers to execute arbitrary SQL commands via the viewform parameter in a 1 ferforms or 2 tferforms action to index.php, and the 3 id parameter in a vferforms action to...
CVE-2010-2846
CVE-2010-2846 affects Joomla! ArtForms (com_artforms) via version 2.1b7.2 RC2. The issue is a Cross‑Site Scripting (XSS) vulnerability exploitable through the afmsg parameter to index.php, allowing remote script/HTML injection. Root cause: inadequate input handling in ArtForms. OpenVAS references...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in the InterJoomla ArtForms comartforms component 2.1b7 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter to 1 imgcaptcha.php or 2 mp3captcha.php in...
CVE-2009-1822
Multiple PHP remote file inclusion vulnerabilities in the InterJoomla ArtForms comartforms component 2.1b7 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter to 1 imgcaptcha.php or 2 mp3captcha.php in...
CVE-2009-1822
Multiple PHP remote file inclusion vulnerabilities in the InterJoomla ArtForms comartforms component 2.1b7 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter to 1 imgcaptcha.php or 2 mp3captcha.php in...
CVE-2009-1822
CVE-2009-1822 affects the InterJoomla ArtForms (com_artforms) Joomla! extension (version 2.1b7). The vulnerability is a PHP remote file inclusion via a URL supplied to mosConfig_absolute_path in one of three PHP scripts (assets/captcha/includes/captchaform/imgcaptcha.php, mp3captcha.php, or asset...