Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
StackideasKomento

3 matches found

CVE
CVEadded 2014/01/30 6:0 p.m.62 views

CVE-2014-0793

The CVE-2014-0793 issue affects the Komento Joomla Extension (Stack Ideas) before 1.7.3. The vulnerability is a Cross‑Site Scripting (XSS) flaw in user-supplied data passed via the website and latitude fields in a comment submitted to ?option=com_komento, enabling remote attackers to inject arbit...

4.3CVSS5.7AI score0.00734EPSS
Web
CVE
CVEadded 2017/12/27 7:0 p.m.47 views

CVE-2015-7324

CVE-2015-7324 concerns the StackIdeas Komento (com_komento) Joomla! component, prior to version 2.0.5. The vulnerability arises in helpers/comment.php where remote attackers can inject arbitrary HTML/script via the (1) img or (2) url tag when posting a new comment, constituting a cross-site scrip...

6.1CVSS6AI score0.00324EPSS
Web
CVE
CVEadded 2014/01/30 7:0 p.m.44 views

CVE-2014-1837

CVE-2014-1837 describes a cross-site scripting (XSS) vulnerability in the StackIdeas Komento (com_komento) component for Joomla! prior to version 1.7.4. The issue allows remote attackers to inject arbitrary web script or HTML via vectors related to adding or checking new comments. The NVD entry i...

4.3CVSS5.8AI score0.00357EPSS