Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Github Security Blog
Github Security Blogadded 2022/05/01 6:21 p.m.17 views

Joomla! vulnerable to CRLF injection

CRLF injection vulnerability in Joomla! before 1.0.13 aka Sunglow allows remote attackers to inject arbitrary HTTP headers and probably conduct HTTP response splitting attacks via CRLF sequences in the url parameter. NOTE: this can be leveraged for cross-site scripting XSS attacks. NOTE: some of...

4.3CVSS6.5AI score0.00019EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2007/10/18 9:17 p.m.12 views

CVE-2007-5577

Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.0.13 aka Sunglow allow remote attackers to inject arbitrary web script or HTML via the 1 Title or 2 Section Name form fields in the Section Manager component, or 3 multiple unspecified fields in New Menu Item...

4.3CVSS5.7AI score0.00066EPSS
Exploits0References7
CVE
CVEadded 2007/10/18 9:0 p.m.59 views

CVE-2007-5577

CVE-2007-5577 affects Joomla! (pre-1.0.13, aka Sunglow). The vulnerability allows remote XSS via the Section Manager’s Title/Section Name fields and multiple fields in New Menu Item, enabling injection of arbitrary script/HTML. Affected component/versions are stated; impact is client-side script ...

4.3CVSS5.7AI score0.00066EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2007/10/18 9:0 p.m.22 views

CVE-2007-5577

Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.0.13 aka Sunglow allow remote attackers to inject arbitrary web script or HTML via the 1 Title or 2 Section Name form fields in the Section Manager component, or 3 multiple unspecified fields in New Menu Item...

5.7AI score0.00066EPSS
Exploits0References7
NVD
NVDadded 2007/08/08 1:17 a.m.12 views

CVE-2007-4188

Session fixation vulnerability in Joomla! before 1.0.13 aka Sunglow allows remote attackers to hijack administrative web sessions via unspecified vectors...

9.3CVSS6.6AI score0.00143EPSS
Exploits0References5
CVE
CVEadded 2007/08/08 1:11 a.m.57 views

CVE-2007-4188

CVE-2007-4188 describes a session fixation vulnerability in Joomla! versions prior to 1.0.13 (Sunglow). The issue allows an attacker to hijack an administrator web session via unspecified vectors by manipulating session handling. Affected product: Joomla! CMS (pre-1.0.13). Reported impact is remo...

9.3CVSS6.6AI score0.00143EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2007/08/08 1:11 a.m.19 views

CVE-2007-4188

Session fixation vulnerability in Joomla! before 1.0.13 aka Sunglow allows remote attackers to hijack administrative web sessions via unspecified vectors...

6.5AI score0.00143EPSS
Exploits0References5
CVE
CVEadded 2007/08/08 1:11 a.m.53 views

CVE-2007-4190

CVE-2007-4190 (Joomla!) : A CRLF injection vulnerability in Joomla! before 1.0.13 (aka Sunglow) allows remote attackers to inject arbitrary HTTP headers and potentially perform HTTP response splitting, which can enable cross-site scripting in some cases. The flaw arises from CRLF sequences in the...

4.3CVSS5.9AI score0.00019EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder