EUVD-2009-2098

Malware in sbrugna...

Joomla Jumi 3.0.5 Database Disclosure / SQL Injection

Exploit Title : Joomla Jumi Components 3.0.5 SQL Injection / Database Disclosure / Remote File Upload Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 05/02/2019 Vendor Homepage : 2glux.com Software Download Link :...

Joomla Jumi 3.0.5 Cross Site Scripting

No description provided by source...

Joomla Jumi 3.0.5 Cross Site Scripting

Exploit Title : Joomla Component comjumi - Cross Site Scripting Exploit Author : Persian Hack Team Vendor Homepage : http://extensions.joomla.org/extension/jumi Category: Webapps Tested on: Win Date: 2016/05/26 Version : 3.0.5 PoC: fileid vulnerable to XSS Payload = "PersianHack Team Demo :...

Jumi Component for Joomla! <= 2.0.5 Backdoor Detection

The version of Joomla! running on the remote host is affected by a backdoor that is part of a trojan installation of Jumi, a third-party component used for including custom code into Joomla!. An unauthenticated, remote attacker can exploit this backdoor, by using specially crafted input to the...

Jumi Component for Joomla! 'fileid' Parameter SQLi

The version of the Jumi component for Joomla! running on the remote host is affected by a SQL injection vulnerability due to improper sanitization of user-supplied input to the 'fileid' parameter before using it in a GET request to construct database queries. Regardless of the PHP 'magicquotesgpc...

com_jumi / jumi 2.0.5 for joomla 1.5 backdoored

Summary: another backdoored joomla component yawn Application: Jumi, a joomla component About Jumi: Jumi is the set of custom code extensions for Joomla! 1.0.x and 1.5.x in their native modes. Since 2006 more then 200.000 downloads. With Jumi you can include php, html, javascript scripts into the...

CVE-2009-2102

SQL injection vulnerability in the Jumi comjumi component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php...

Sql injection

SQL injection vulnerability in the Jumi comjumi component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php...

CVE-2009-2102

SQL injection vulnerability in the Jumi comjumi component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php...

CVE-2009-2102

The CVE relates to the Jumi (com_jumi) Joomla extension, specifically version 2.0.3 and possibly earlier/newer ones. The underlying issue is an SQL injection in the fileid parameter of index.php, allowing an unauthenticated, remote attacker to manipulate database queries and potentially disclose ...