EUVD-2010-5012

Malware in sbrugna...

Joomla JComments 3.0.5 SQL Injection

Exploit Title : Joomla JComments Components 3.0.5 SQL Injection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 31/01/2019 Vendor Homepage : joomlatune.com Software Download Link : joomlatune.com/jcomments-downloads.html Software Information Link :...

Jcomments, version 3.0.5, Input Validation Vulnerability

jcomments,versions 3.0.5 and all previous, inadequate input validation of objectgroup parameter leads to possible exploits including arbitrary local file inclusion resolution: update to version 3.0.6 There is evidence that this is being actively exploited, so users are recommended to update ASAP...

CVE-2010-5048

Cross-site scripting XSS vulnerability in admin.jcomments.php in the JoomlaTune JComments comjcomments component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web script or HTML via the name parameter to index.php...

Cross site scripting

Cross-site scripting XSS vulnerability in admin.jcomments.php in the JoomlaTune JComments comjcomments component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web script or HTML via the name parameter to index.php...

CVE-2010-5048

Cross-site scripting XSS vulnerability in admin.jcomments.php in the JoomlaTune JComments comjcomments component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web script or HTML via the name parameter to index.php...

CVE-2010-5048

CVE-2010-5048 concerns a persistent XSS in Joomla! JComments (com_jcomments) admin.jcomments.php v2.1.0.0. The flaw arises from insufficient input sanitization in the POST field named “name,” allowing remote authenticated users to inject arbitrary HTML/JS. The vulnerability affects the JComments ...

Joomla! Component QuickFAQ 1.0.3 - Blind SQL Injection

Joomla! Component QuickFAQ 1.0.3 - Blind SQL Injection ----------------------------------------------------------------------------------------- Joomla Component comquickfaq BSQL-i Vulnerability ----------------------------------------------------------------------------------------- +Title Jooml...

Joomla Component com_quickfaq Blind SQL Injection Vulnerability

Exploit for php platform in category web applications =============================================================== Joomla Component comquickfaq Blind SQL Injection Vulnerability ===============================================================...

XSS vulnerability in JComments, Joomla

Vulnerability ID: HTB22368 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinjcommentsjoomla.html Product: JComments Vendor: JoomlaTune .com Vulnerable Version: 2.1.0.0 07/08/2009 and Probably Prior Versions Vendor Notification: 04 May 2010 Vulnerability Type: XSS Cross Site Scripting...

Joomla JComments 2.10.0 Cross Site Scripting

Vulnerability ID: HTB22368 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinjcommentsjoomla.html Product: JComments Vendor: JoomlaTune .com Vulnerable Version: 2.1.0.0 07/08/2009 and Probably Prior Versions Vendor Notification: 04 May 2010 Vulnerability Type: XSS Cross Site Scripting...

Joomla! Component JComments 2.1 - ComntrNam Cross-Site Scripting

Joomla! Component JComments 2.1 - ComntrNam Cross-Site Scripting source: https://www.securityfocus.com/bid/40230/info The JComments component for Joomla! is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue...

Joomla! Component JComments 2.1 - 'ComntrNam' Cross-Site Scripting

source: https://www.securityfocus.com/bid/40230/info The JComments component for Joomla! is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecti...

Cross-site Scripting (XSS) Vulnerability in JComments Component for Joomla!

High-Tech Bridge SA Security Research Lab has discovered vulnerability in JComments component for Joomla! which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in JComments: CVE-2010-5048 The vulnerability exists due to input sanitation error i...