5 matches found
CVE-2019-9922
The CVE-2019-9922 entry corresponds to Harmis JE Messenger for Joomla! 1.2.2, where a Local File Inclusion/Directory Traversal vulnerability allows an attacker to read arbitrary files. The connected Nuclei template confirms the affected software and classifies the issue as LFI, describing that ex...
CVE-2019-9918
CVE-2019-9918 affects Harmis JE Messenger for Joomla! v1.2.2. The root cause is unvalidated input and poorly written queries, enabling arbitrary SQL statements in the database. Exploitation details are not provided in the documents. A remediation patch/version is not specified in the given materi...
CVE-2019-9920
CVE-2019-9920 affects Harmis JE Messenger component version 1.2.2 for Joomla!. The issue is an access-control weakness that allows performing an action in the context of another user’s account. Documents consistently describe the vulnerable component and version, but do not provide concrete techn...
CVE-2019-9921
CVE-2019-9921 affects Harmis JE Messenger component 1.2.2 for Joomla!. The issue is an access-control error that allows reading information that should be accessible only to another user, leading to potential information disclosure. The vulnerability is documented across multiple sources (NVD/RH ...
CVE-2019-9919
CVE-2019-9919 affects Harmis JE Messenger component for Joomla! (version 1.2.2). The issue is a cross-site scripting (XSS) vulnerability where crafted messages can cause JavaScript to execute in the recipient’s browser when opened. The available sources consistently describe the vulnerability but...