13 matches found
EUVD-2015-7249
Malware in sbrugna...
EUVD-2014-1904
Malware in sbrugna...
EUVD-2014-0824
Malware in sbrugna...
StackIdeas Komento component SQL注入漏洞
StackIdeas Komento component is a commenting plugin from StackIdeas Malaysia. A SQL injection vulnerability exists in StackIdeas Komento component versions 4.0.0-4.0.7, which stems from a SQL injection vulnerability that could lead to the execution of arbitrary SQL commands...
CVE-2015-7324
CVE-2015-7324 concerns the StackIdeas Komento (com_komento) Joomla! component, prior to version 2.0.5. The vulnerability arises in helpers/comment.php where remote attackers can inject arbitrary HTML/script via the (1) img or (2) url tag when posting a new comment, constituting a cross-site scrip...
CVE-2014-1837
Cross-site scripting XSS vulnerability in the StackIdeas Komento comkomento component before 1.7.4 for Joomla! allows remote attackers to inject arbitrary web script or HTML via vectors related to "checking new comments."...
Cross site scripting
Cross-site scripting XSS vulnerability in the StackIdeas Komento comkomento component before 1.7.4 for Joomla! allows remote attackers to inject arbitrary web script or HTML via vectors related to "checking new comments."...
CVE-2014-1837
Cross-site scripting XSS vulnerability in the StackIdeas Komento comkomento component before 1.7.4 for Joomla! allows remote attackers to inject arbitrary web script or HTML via vectors related to "checking new comments."...
CVE-2014-1837
CVE-2014-1837 describes a cross-site scripting (XSS) vulnerability in the StackIdeas Komento (com_komento) component for Joomla! prior to version 1.7.4. The issue allows remote attackers to inject arbitrary web script or HTML via vectors related to adding or checking new comments. The NVD entry i...
CVE-2014-0793
Multiple cross-site scripting XSS vulnerabilities in the StackIdeas Komento comkomento component before 1.7.3 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the 1 website or 2 latitude parameter in a comment to the default URI...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the StackIdeas Komento comkomento component before 1.7.3 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the 1 website or 2 latitude parameter in a comment to the default URI...
CVE-2014-0793
Multiple cross-site scripting XSS vulnerabilities in the StackIdeas Komento comkomento component before 1.7.3 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the 1 website or 2 latitude parameter in a comment to the default URI...
CVE-2014-0793
The CVE-2014-0793 issue affects the Komento Joomla Extension (Stack Ideas) before 1.7.3. The vulnerability is a Cross‑Site Scripting (XSS) flaw in user-supplied data passed via the website and latitude fields in a comment submitted to ?option=com_komento, enabling remote attackers to inject arbit...