Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:27 p.m.7 views

CVE-2010-4166

Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 allow remote attackers to execute arbitrary SQL commands via 1 the filterorder parameter in a comweblinks category action to index.php, 2 the filterorderDir parameter in a comweblinks category action to index.php, or 3 the...

7.5CVSS8.8AI score0.01423EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:48 a.m.6 views

CVE-2012-3554

SQL injection vulnerability in the RSGallery2 comrsgallery2 component before 2.3.0 for Joomla! 1.5.x, and before 3.2.0 for Joomla! 2.5.x, allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.9AI score0.0121EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/05/31 12:0 a.m.19 views

Joomla! 1.5.x < 1.5.13 Automated Mail Timeout Bypass

According to its self-reported version, the detected Joomla! application version is 1.5.x prior to 1.5.13 and is affected by an automated mail timeout bypass. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No...

5.3CVSS7.3AI score0.00771EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Joomla! 1.5.x Cross Site Scripting and Information Disclosure Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/35544/info Joomla! is prone to multiple cross-site scripting and information-disclosure vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Joomla 1.5.x com_joomgallery&func Incorrect Flood Filter

No description provided by source. ?php $ch = curlinit; curlsetopt$ch, CURLOPTURL, http://server/index.php?option=comjoomgallery&func=votepic&id=here id de voto&Itemid=85; curlsetopt$ch, CURLOPTHEADER, false; curlsetopt$ch, CURLOPTPOSTFIELDS,imgvote=5&Votar%21=Votar%21; curlexec$ch; curlclose$ch;...

7.1AI score
Exploits0
Prion
Prion
added 2012/12/03 9:55 p.m.13 views

Design/Logic Flaw

Joomla! 1.5.x before 1.5.26 has unspecified impact and attack vectors related to "insufficient randomness" and a "password reset vulnerability."...

7.5CVSS7.1AI score0.01265EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2012/08/10 10:0 a.m.25 views

CVE-2012-3554

SQL injection vulnerability in the RSGallery2 comrsgallery2 component before 2.3.0 for Joomla! 1.5.x, and before 3.2.0 for Joomla! 2.5.x, allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

8.4AI score0.0121EPSS
Exploits0References3
seebug.org
seebug.org
added 2011/07/31 12:0 a.m.21 views

Joomla Component (com_obSuggest) Local File Inclusion Vulnerability

No description provided by source. Joomla Component obSuggest Local File Inclusion Vulnerability Author : v3n0m Discovered : July, 31-2011 GMT +7:00 Jakarta, Indonesia Software : obSuggest - Uservoice for Joomla Developer : http://foobla.com/ License : GPLv2 or later Tested On : Joomla 1.5.x Dork...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/07/31 12:0 a.m.33 views

Joomla! Component obSuggest - Local File Inclusion

/ / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID ----------------------------------------------------------------------- Joomla...

7.4AI score
Exploits0
0day.today
0day.today
added 2011/07/21 12:0 a.m.153 views

Joomla Component mod_spo SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Simple Page Option LFI Google Dork: inurl:modspo Date: 15/07/2011 Author: SeguridadBlanca.Blogspot.com or SeguridadBlanca Software Link: http://joomlacode.org/gf/download/frsrelease/11841/47776/modspo1.5.16.zip Version: 1.5.x...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/07/28 12:0 a.m.18 views

Joomla! Component com_photomapgallery 1.6.0 - Multiple Blind SQL Injections

Joomla! Component comphotomapgallery 1.6.0 - Multiple Blind SQL Injections PhotoMap Gallery 1.6.0 Joomla Component Multiple Blind SQL Injection Name PhotoMap Gallery Vendor http://extensions.joomla.org/extensions/photos-a-images/photo-gallery/10658 Versions Affected 1.6.0 Author Salvatore Fresta...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2010/07/28 12:0 a.m.30 views

Joomla! Component com_photomapgallery 1.6.0 - Multiple Blind SQL Injections

PhotoMap Gallery 1.6.0 Joomla Component Multiple Blind SQL Injection Name PhotoMap Gallery Vendor http://extensions.joomla.org/extensions/photos-a-images/photo-gallery/10658 Versions Affected 1.6.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefres...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/07/12 12:0 a.m.32 views

Joomla MySMS Shell Upload

1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Joomla commysms Upload Vulnerability Date : july 10,2010 Critical Level : HIGH vendor URL :http://www.willcodejoomlaforfood.de/ Author : Sid3^effects aKa HaRi...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/07/10 12:0 a.m.40 views

Joomla! Component MySMS - Arbitrary File Upload

1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Joomla commysms Upload Vulnerability Date : july 10,2010 Critical Level : HIGH vendor URL :http://www.willcodejoomlaforfood.de/ Author : Sid3^effects aKa HaRi...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2009/12/30 12:0 a.m.26 views

Joomla 1.5.x Local File Inclusion

Joomla 1.5.x + Download: http://www.joomla.org/download.html + Bug: Local File inclusion in index.php file + Author: s4r4d0 + Mail: [email protected] + Team: Fatal Error + Poc: http://www.site.com/index.php?option=/../../../../../../../../../../../../etc/passwd%00 + Demo:...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/12/03 12:0 a.m.21 views

Component TP Whois for Joomla 1.5.x XSS

No description provided by source. andresg888 Exploit Title : Component TP Whois for Joomla 1.5.x XSS xss , cookie stealing Date : 2009-12-03 Author : andresg888 Software Link : http://www.templateplazza.com Contact : andresg8884tgmaildotcom Web: :...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2009/06/05 6:13 p.m.22 views

CVE-2009-1939

Cross-site scripting XSS vulnerability in the JAPurity template for Joomla! 1.5.x through 1.5.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score0.01327EPSS
Exploits1References7
Prion
Prion
added 2009/04/09 4:27 p.m.11 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the commedia component for Joomla! 1.5.x through 1.5.9 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7.8AI score0.00604EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2009/04/09 4:0 p.m.16 views

CVE-2009-1280

Multiple cross-site request forgery CSRF vulnerabilities in the commedia component for Joomla! 1.5.x through 1.5.9 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors...

7.3AI score0.00604EPSS
Exploits0References3
NVD
NVD
added 2008/09/18 5:59 p.m.31 views

CVE-2008-4107

The 1 rand and 2 mtrand functions in PHP 5.2.6 do not produce cryptographically strong random numbers, which allows attackers to leverage exposures in products that rely on these functions for security-relevant functionality, as demonstrated by the password-reset functionality in Joomla! 1.5.x an...

5.1CVSS9.4AI score0.03013EPSS
Exploits0References19
Rows per page
Query Builder