Lucene search
K

299 matches found

Nuclei
Nuclei
added 3 days ago28 views

Joomla! Component & Plugin JE Tooltip 1.0 - Local File Inclusion

A directory traversal vulnerability in the JE Form Creator comjeformcr component for Joomla!, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the view parameter to index.php. NOTE -- the original researcher states that the...

4.3CVSS6AI score0.06429EPSS
Exploits1References5
NVD
NVD
added 2026/06/01 10:16 p.m.9 views

CVE-2018-25433

Joomla Component JE Photo Gallery 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting malicious SQL code through the categoryid parameter. Attackers can send GET requests to index.php with crafted categoryid values in the...

8.8CVSS0.00341EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/01 9:0 p.m.28 views

CVE-2018-25433 Joomla JE Photo Gallery 1.1 SQL Injection via categoryid

Joomla Component JE Photo Gallery 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting malicious SQL code through the categoryid parameter. Attackers can send GET requests to index.php with crafted categoryid values in the...

8.8CVSS0.00341EPSS
Exploits0References4
CVE
CVE
added 2026/06/01 9:0 p.m.14 views

CVE-2018-25433

Technical details for CVE-2018-25433 are not publicly available in the provided documents. Monitor for updates.

8.8CVSS6.1AI score0.00341EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.10 views

Joomla Component JE Photo Gallery SQL注入漏洞

The Joomla component JE Photo Gallery is an open-source Joomla image gallery component. Version 1.1 of the JE Photo Gallery has a SQL injection vulnerability. This vulnerability stems from the categoryid parameter, which allows for SQL injections. Unauthorized attackers could exploit this...

8.8CVSS5.7AI score0.00341EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.10 views

PT-2026-45624

Joomla Component JE Photo Gallery 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting malicious SQL code through the categoryid parameter. Attackers can send GET requests to index.php with crafted categoryid values in the...

8.8CVSS6.1AI score0.00341EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/12 9:16 p.m.3 views

CVE-2025-14088

A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an unknown functionality of the file /je/load. This manipulation of the argument Authorization causes improper authorization. The attack is possible to be carried out remotely. The exploit has been public...

6.5CVSS6.7AI score0.00201EPSS
Exploits0References1
NVD
NVD
added 2025/12/05 3:15 p.m.5 views

CVE-2025-14088

A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an unknown functionality of the file /je/load. This manipulation of the argument Authorization causes improper authorization. The attack is possible to be carried out remotely. The exploit has been public...

6.5CVSS0.00201EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/05 2:32 p.m.21 views

CVE-2025-14088 ketr JEPaaS load improper authorization

A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an unknown functionality of the file /je/load. This manipulation of the argument Authorization causes improper authorization. The attack is possible to be carried out remotely. The exploit has been public...

6.5CVSS0.00201EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/05 12:0 a.m.4 views

PT-2025-49246

A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an unknown functionality of the file /je/load. This manipulation of the argument Authorization causes improper authorization. The attack is possible to be carried out remotely. The exploit has been public...

6.5CVSS6.7AI score0.00201EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.3 views

Malicious code in je-hentai-anime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd3dbfa944a930f1e674174086b9c051beaddc1f10405aaf05c37f6d49fe901a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-2144

Malware in sbrugna...

7.5CVSS6.4AI score0.15821EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-4334

Malware in sbrugna...

7.5CVSS6.4AI score0.00999EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-19273

Malware in sbrugna...

9.1CVSS8.6AI score0.01278EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-19274

Malware in sbrugna...

5.4CVSS5.5AI score0.00678EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-4992

Malware in sbrugna...

7.5CVSS6.4AI score0.09247EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-5024

Malware in sbrugna...

7.5CVSS6.4AI score0.01223EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2012-5153

Malware in sbrugna...

7.5CVSS6.4AI score0.01308EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-2145

Malware in sbrugna...

6.8CVSS6.4AI score0.04995EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-19276

Malware in sbrugna...

7.7CVSS7AI score0.01128EPSS
Exploits0References3
Rows per page
Query Builder