Lucene search
K

11 matches found

Vulnrichment
Vulnrichment
added 2024/02/15 8:20 p.m.25 views

CVE-2024-21728 Extension - smartcalc.es - Open redirect vulnerability in osTicky component for Joomla <= 2.2.8

An Open Redirect vulnerability was found in osTicky2 below 2.2.8. osTicky osTicket Bridge by SmartCalc is a Joomla 3.x extension that provides Joomla fronted integration with osTicket, a popular Support ticket system. The Open Redirect vulnerability allows attackers to control the return paramete...

6.8AI score0.0032EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/15 8:20 p.m.31 views

CVE-2024-21728 Extension - smartcalc.es - Open redirect vulnerability in osTicky component for Joomla <= 2.2.8

An Open Redirect vulnerability was found in osTicky2 below 2.2.8. osTicky osTicket Bridge by SmartCalc is a Joomla 3.x extension that provides Joomla fronted integration with osTicket, a popular Support ticket system. The Open Redirect vulnerability allows attackers to control the return paramete...

6.7AI score0.0032EPSS
Exploits0References1
OSV
OSV
added 2021/05/26 11:15 a.m.26 views

CVE-2021-26033

An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint...

6.5CVSS6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.38 views

Joomla! 3.x < 3.9.26 Multiple Vulnerabilities

According to its self-reported version, the instance of Joomla! running on the remote web server is 3.x prior to 3.9.26. It is, therefore, affected by multiple vulnerabilities. - Inadequate escaping allowed Cross-Site Scripting XSS using the logo parameter of the default templates on error pages...

6.1CVSS5.6AI score0.82272EPSS
Exploits0References5
Prion
Prion
added 2019/09/24 9:15 p.m.10 views

Cross site scripting

In Joomla! 3.x before 3.9.12, inadequate escaping allowed XSS attacks using the logo parameter of the default templates...

4.3CVSS5.9AI score0.00671EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2019/02/12 12:0 a.m.289 views

Joomla JoomGallery 3.2.2 / PonyGallery 2.5.1 Database Disclosure / SQL Injection

Exploit Title : Joomla JoomGallery 3.2.2 PonyGallery 2.5.1 SQL Injection / Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 12/02/2019 Vendor Homepage : joomlander.net - joomlacode.org Software Download Link :...

7.5CVSS0.3AI score0.02167EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.17 views

Joomla! 3.1.x < 3.8.8 Multiple Vulnerabilities

According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - ACL violation in access levels affects Joomla 2.5.0 through 3.8.7 - Adding phar files to the upload blacklist affects Joomla 2.5.0 through 3.8.7 - Information Disclosure abo...

9.8CVSS7.7AI score0.03798EPSS
Exploits0References18
Packet Storm
Packet Storm
added 2018/01/03 12:0 a.m.42 views

Joomla RealEstateManager 4.2.0 SQL Injection

Title: Joomla RealEstateManager 4.2.0 - SQL injection Credit: Bilal KARDADOU Vendor: http://ordasoft.com/ URL: https://extensions.joomla.org/extensions/extension/vertical-markets/real-estate/realestatemanager/ Product: 'Joomla RealEstateManager 4.2.0' Developer: OrdaSoft Extension type: Plugin La...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/15 12:0 a.m.22 views

Joomla 3.x <= 3.4.4模块Content History存在SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2016/01/12 8:0 p.m.31 views

CVE-2015-8769

SQL injection vulnerability in Joomla! 3.x before 3.4.7 allows attackers to execute arbitrary SQL commands via unspecified vectors...

7.6AI score0.01138EPSS
Exploits0References3
CVE
CVE
added 2016/01/12 8:0 p.m.64 views

CVE-2015-8769

CVE-2015-8769: Joomla! Core SQL Injection vulnerability in Joomla! 3.x before 3.4.7 allows attackers to execute arbitrary SQL commands via unspecified vectors. Affected software is Joomla! 3.x prior to 3.4.7. Root cause is SQL injection in core; impact includes potential data disclosure/manipulat...

7.5CVSS7.6AI score0.01138EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder