CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2012-6503
https://notcve.org/view.php?id=CVE-2012-6503
Unspecified vulnerability in the NinjaXplorer component before 1.0.7 for Joomla! has unknown impact and attack vectors. Vulnerabilidad no especificada en el componente NinjaXplorer anterior a v1.0.7 para Joomla! tiene un impacto desconocido y vectores de ataque. • http://ninjaforge.com/blog/318-security-vulnerability-discovered-in-ninjaxplorer-upgrade-immediately http://secunia.com/advisories/48958 http://www.osvdb.org/81630 http://www.securityfocus.com/bid/53256 https://exchange.xforce.ibmcloud.com/vulnerabilities/75161 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 3CVE-2010-4991 – Joomla! Component NinjaMonials - Blind SQL Injection
https://notcve.org/view.php?id=CVE-2010-4991
SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php. Vulnerabilidad de inyección SQL en el componente NinjaMonials (com_ninjamonials) de Joomla! permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro Itemid en una acción display de index.php. • https://www.exploit-db.com/exploits/14211 http://www.exploit-db.com/exploits/14211 http://www.securityfocus.com/bid/41345 https://exchange.xforce.ibmcloud.com/vulnerabilities/60094 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 3CVE-2009-3964 – Joomla! Component com_ninjamonial 1.1 - 'testimID' SQL Injection
https://notcve.org/view.php?id=CVE-2009-3964
SQL injection vulnerability in the NinjaMonials (com_ninjacentral) component 1.1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the testimID parameter in a display action to index.php. Vulnerabilidad de inyección SQL en el componente NinjaMonials (com_ninjacentral) v1.1.0 para Joomla!, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro "testimID" en una acción display a index.php. • https://www.exploit-db.com/exploits/9502 http://www.exploit-db.com/exploits/9502 http://www.securityfocus.com/bid/36122 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •