CVSS: 7.5EPSS: 15%CPEs: 2EXPL: 3CVE-2010-1714 – Joomla! Component Arcade Games 1.0 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1714
04 May 2010 — Directory traversal vulnerability in the Arcade Games (com_arcadegames) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Arcade Games (com_arcadegames) v1.0 para Joomla!, permite a atacantes remotos leer archivos de su elección a través de .. • https://www.exploit-db.com/exploits/12168 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 3CVE-2010-1715 – Joomla! Component Online Exam 1.5.0 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1715
04 May 2010 — Directory traversal vulnerability in the Online Examination (aka Online Exam or com_onlineexam) component 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information. Vulnerabilidad de salto de directorio en el componente Online Examination (también conocido como Online Exam o com_onlineexam) v1.5.0 para Joomla! • https://www.exploit-db.com/exploits/12174 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 3CVE-2010-1716 – Joomla! Component Agenda Address Book 1.0.1 - 'id' SQL Injection
https://notcve.org/view.php?id=CVE-2010-1716
04 May 2010 — SQL injection vulnerability in the Agenda Address Book (com_agenda) component 1.0.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php. Vulnerabilidad de inyección SQL en el componente Agenda Address Book (com_agenda) v1.0.1 para Joomla!, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro "id" en una acción de detalle a index.php. • https://www.exploit-db.com/exploits/12132 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 3CVE-2010-1718 – Joomla! Component Archery Scores 1.0.6 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1718
04 May 2010 — Directory traversal vulnerability in archeryscores.php in the Archery Scores (com_archeryscores) component 1.0.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en archeryscores.php del componente Archery Scores (com_archeryscores) v1.0.6 para Joomla!, permite a atacantes remotos incluir y ejecutar ficheros locales de su elección al utilizar caracteres .. • https://www.exploit-db.com/exploits/12282 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 3%CPEs: 2EXPL: 3CVE-2010-1719 – Joomla! Component MT Fire Eagle 1.2 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1719
04 May 2010 — Directory traversal vulnerability in the MT Fire Eagle (com_mtfireeagle) component 1.2 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente MT Fire Eagle (com_mtfireeagle) v1.2 para Joomla!, permite a atacantes remotos leer archivos de su elección y posiblemente provocar otro impacto no especificado a través de .. • https://www.exploit-db.com/exploits/12233 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 4CVE-2010-1720 – Joomla! Component Q-Personel 1.0 - SQL Injection
https://notcve.org/view.php?id=CVE-2010-1720
04 May 2010 — SQL injection vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the katid parameter in a qpListele action to index.php. Vulnerabilidad de inyección SQL en el componente Q-Personel (com_qpersonel) v1.0.2 y anteriores para Joomla!, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro katid en una acción qpListele sobre index.php. • https://www.exploit-db.com/exploits/12723 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 2CVE-2010-1721 – Joomla! Component Intellectual Property 1.5.3 - 'id' SQL Injection
https://notcve.org/view.php?id=CVE-2010-1721
04 May 2010 — SQL injection vulnerability in the Intellectual Property (aka IProperty or com_iproperty) component 1.5.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an agentproperties action to index.php. Vulnerabilidad de inyección SQL en el componente Intellectual Property (también conocido como IProperty or com_iproperty) para Joomla!, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro id en una acción agentproperties en index.php • https://www.exploit-db.com/exploits/12246 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.1EPSS: 1%CPEs: 2EXPL: 3CVE-2010-1722 – Joomla! Component Online Market 2.x - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1722
04 May 2010 — Directory traversal vulnerability in the Online Market (com_market) component 2.x for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Online Market (com_market) v2.x para Joomla!, permite a atacantes remotos leer archivos a su elección y posiblemente tener otro impacto no especificado a través de .. • https://www.exploit-db.com/exploits/12177 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 7%CPEs: 2EXPL: 2CVE-2010-1723 – Joomla! Component iNetLanka Contact Us Draw Root Map 1.1 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1723
04 May 2010 — Directory traversal vulnerability in the iNetLanka Contact Us Draw Root Map (com_drawroot) component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente iNetLanka Contact Us Draw Root Map (com_drawroot) v1.1 para Joomla!, permite a atacantes remotos leer archivos de su elección y posiblemente tener otro impacto no especificado a través de ... • https://www.exploit-db.com/exploits/12289 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 6%CPEs: 3EXPL: 4CVE-2010-1653 – Joomla! Component Graphics 1.0.6 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1653
30 Apr 2010 — Directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information. Una vulnerabilidad de salto de directorio en graphics.php del componente de Joomla! • https://www.exploit-db.com/exploits/12430 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •