26 matches found
CVE-2018-25354
Joomla Component jomres 9.11.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information by tricking authenticated users into visiting malicious pages. Attackers can craft HTML forms targeting the account/index endpoint with hidden fields to chan...
CVE-2018-25354
Joomla Component jomres 9.11.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information by tricking authenticated users into visiting malicious pages. Attackers can craft HTML forms targeting the account/index endpoint with hidden fields to chan...
CVE-2018-25354 Joomla Component jomres 9.11.2 Cross-Site Request Forgery
Joomla Component jomres 9.11.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information by tricking authenticated users into visiting malicious pages. Attackers can craft HTML forms targeting the account/index endpoint with hidden fields to chan...
EUVD-2018-21875
Joomla Component jomres 9.11.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information by tricking authenticated users into visiting malicious pages. Attackers can craft HTML forms targeting the account/index endpoint with hidden fields to chan...
CVE-2018-25354 Joomla Component jomres 9.11.2 Cross-Site Request Forgery
Joomla Component jomres 9.11.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information by tricking authenticated users into visiting malicious pages. Attackers can craft HTML forms targeting the account/index endpoint with hidden fields to chan...
CVE-2018-25354
The CVE-2018-25354 entry affects Joomla Component jomres 9.11.2. A cross-site request forgery vulnerability allows an attacker to modify user account information by enticing an authenticated user to visit malicious pages; crafted HTML forms targeting the account/index endpoint with hidden fields ...
Joomla Component jomres 跨站请求伪造漏洞
The Joomla component jomres is a hotel and property online reservation management component developed by the Jomres developer. Version 9.11.2 of the Joomla component jomres contains a cross-site request forgeing vulnerability. This vulnerability stems from cross-site request forgery, allowing...
EUVD-2013-3863
Malware in sbrugna...
EUVD-2013-3864
Malware in sbrugna...
CVE-2013-3932
SQL injection vulnerability in the Jomres comjomres component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to execute arbitrary SQL commands via the id parameter in an editProfile action to administrator/index.php...
CVE-2013-3931
Cross-site scripting XSS vulnerability in the Jomres comjomres component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to inject arbitrary web script or HTML via the propertyname parameter, related to editing property details...
Sql injection
SQL injection vulnerability in the Jomres comjomres component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to execute arbitrary SQL commands via the id parameter in an editProfile action to administrator/index.php...
Cross site scripting
Cross-site scripting XSS vulnerability in the Jomres comjomres component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to inject arbitrary web script or HTML via the propertyname parameter, related to editing property details...
CVE-2013-3932
SQL injection vulnerability in the Jomres comjomres component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to execute arbitrary SQL commands via the id parameter in an editProfile action to administrator/index.php...
CVE-2013-3932
CVE-2013-3932 affects the Jomres (com_jomres) Joomla! extension before 7.3.1. The flaw allows remote authenticated users with the Business Manager permission to inject SQL via the id parameter in an editProfile action to administrator/index.php, enabling arbitrary SQL execution and potential data...
CVE-2013-3931
The CVE-2013-3931 issue affects the Joomla! Joomla extension Jomres (com_jomres) before version 7.3.1. The vulnerability is a cross-site scripting (XSS) flaw in the property_name parameter used during editing property details, exploitable by remote authenticated users who have the Business Manage...
CVE-2013-3931
Cross-site scripting XSS vulnerability in the Jomres comjomres component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to inject arbitrary web script or HTML via the propertyname parameter, related to editing property details...
Joomla Jomres 9.16.1 SQL Injection
Exploit Title : Joomla Jomres Components 9.16.1 SQL Injection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 05/02/2019 Vendor Homepage : jomres.net Software Download Link : jomres.net/download Software Information Link : extensions.joomla.org/extension/jomres/...
Jomres,9.14.0 & lower,Other
Jomres,9.14.0 & lower Developer statement new version number 9.15.0 UpdateNotice URL https://www.jomres.net/blog/99-jomres-9-15-0-security-release-new-features Changelog Url https://www.jomres.net/support/changelog...
Joomla Jomres 9.11.2 Cross Site Request Forgery
Exploit Title: Joomla!Component jomres 9.11.2 - Cross site request forgery Date: 2018-06-15 Exploit Author: L0RD Vendor Homepage: https://www.jomres.net/ Software link: https://extensions.joomla.org/extension/jomres/ Software Download:...