Joomla!@* Security Vulnerabilities and Issues — Joomla!@* CVE List

Lucene search

JoomlaJoomla!*

4 matches found

CVE•added 2009/05/01 4:30 p.m.•45 views

CVE-2009-1499

SQL injection vulnerability in the MailTo (aka com_mailto) component in Joomla! allows remote attackers to execute arbitrary SQL commands via the article parameter in index.php. NOTE: SecurityFocus states that this issue has been disputed by the vendor.

7.5CVSS8.7AI score0.00006EPSS

CVE•added 2009/07/07 7:0 p.m.•38 views

CVE-2008-6852

SQL injection vulnerability in the Ice Gallery (com_ice) component 0.5 beta 2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.

7.5CVSS8.7AI score0.00021EPSS

CVE•added 2009/11/16 8:30 p.m.•37 views

CVE-2009-3946

Joomla! before 1.5.15 allows remote attackers to read an extension's XML file, and thereby obtain the extension's version number, via a direct request.

5CVSS6.6AI score0.00041EPSS

CVE•added 2009/11/16 8:30 p.m.•35 views

CVE-2009-3945

Unspecified vulnerability in the Front-End Editor in the com_content component in Joomla! before 1.5.15 allows remote authenticated users, with Author privileges, to replace the articles of an arbitrary user via unknown vectors.

5.5CVSS6.3AI score0.00032EPSS