Joomla Content Editor@* Security Vulnerabilities and Issues — Joomla Content Editor@* CVE List

Lucene search

Ryan DemmerJoomla Content Editor*

3 matches found

CVE•added 2006/12/10 11:28 a.m.•39 views

CVE-2006-6419

jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor (JCE) 1.1.0 beta 2 and earlier for Joomla! (com_jce) allows remote attackers to include and possibly execute arbitrary local files via the (1) plugin or (2) file parameter. NOTE: The provenance of this information is unknown; t...

7.5CVSS7.1AI score0.00585EPSS

CVE•added 2012/05/21 6:55 p.m.•37 views

CVE-2012-2902

Unrestricted file upload vulnerability in editor/extensions/browser/file.php in the Joomla Content Editor (JCE) component before 2.1 for Joomla!, when chunking is set to greater than zero, allows remote authors to execute arbitrary PHP code by uploading a PHP file with a double extension as demonst...

6CVSS7.8AI score0.006EPSS

CVE•added 2012/05/21 6:55 p.m.•35 views

CVE-2012-2901

Cross-site scripting (XSS) vulnerability in the Profile List in the Joomla Content Editor (JCE) component before 2.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the search parameter to administrator/index.php.

4.3CVSS5.9AI score0.00357EPSS