9 matches found
EUVD-2006-6402
Malware in sbrugna...
EUVD-2006-6149
Malware in sbrugna...
EUVD-2006-6403
Malware in sbrugna...
CVE-2006-6419
jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor JCE 1.1.0 beta 2 and earlier for Joomla! comjce allows remote attackers to include and possibly execute arbitrary local files via the 1 plugin or 2 file parameter. NOTE: The provenance of this information is unknown; the...
CVE-2006-6419
CVE-2006-6419 affects Joomla! JCE Admin Component (com_jce) 1.1.0 beta2 and earlier. The vulnerability is a local file include/remote code execution issue in jce.php, where the (1) plugin or (2) file parameter can be used to include arbitrary local files, potentially executing PHP code on the ser...
CVE-2006-6420
Multiple cross-site scripting XSS vulnerabilities in jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor JCE 1.1.0 beta 2 and earlier for Joomla! comjce allow remote attackers to inject arbitrary web script or HTML via the 1 img, 2 title, 3 w, or 4 h parameter, different vecto...
CVE-2006-6420
Technical details about CVE-2006-6420 are not provided in the connected documents. The initial description covers XSS in Joomla JCE, but there are no added specifics (products, versions, vectors) in the supplied materials. Monitor for updates.
CVE-2006-6166
Cross-site scripting XSS vulnerability in jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor JCE 1.0.4 for Joomla! comjce, without the 20060821 jcepatch, allows remote attackers to inject arbitrary web script or HTML via the mosConfiglivesite parameter...
CVE-2006-6166
Cross-site scripting XSS vulnerability in jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor JCE 1.0.4 for Joomla! comjce, without the 20060821 jcepatch, allows remote attackers to inject arbitrary web script or HTML via the mosConfiglivesite parameter...