CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 4CVE-2010-1532 – Joomla! Component PowerMail Pro 1.5.3 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1532
26 Apr 2010 — Directory traversal vulnerability in the givesight PowerMail Pro (com_powermail) component 1.5.3 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente givesight PowerMail Pro (com_powermail) v1.5.3 para Joomla! permite a atacantes remotos leer ficheros de su elección y posiblemente, tener otro impacto a través de un .. • https://www.exploit-db.com/exploits/12118 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 2CVE-2010-1533 – Joomla! Component TweetLA 1.0.1 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1533
26 Apr 2010 — Directory traversal vulnerability in the TweetLA (com_tweetla) component 1.0.1 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Una vulnerabilidad de salto de directorio en el componente para Joomla! TweetLA (com_tweetla) v1.01 permite a atacantes remotos leer ficheros arbitrarios a través de un .. • https://www.exploit-db.com/exploits/12142 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 4%CPEs: 5EXPL: 3CVE-2010-1534 – Joomla! Component Shoutbox Pro - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1534
26 Apr 2010 — Directory traversal vulnerability in the Shoutbox Pro (com_shoutbox) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Una vulnerabilidad de salto de directorio en el componente para Joomla! Shoutbox Pro (com_shoutbox) permite a atacantes remotos leer ficheros arbitrarios a través de un .. • https://www.exploit-db.com/exploits/12067 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 3%CPEs: 2EXPL: 2CVE-2010-1535 – Joomla! Component TRAVELbook 1.0.1 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1535
26 Apr 2010 — Directory traversal vulnerability in the TRAVELbook (com_travelbook) component 1.0.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente TRAVELbook (com_travelbook) v1.0.1 para Joomla! permite a atacantes remotos leer archivos de su elección y probablemente provocar otros impactos no especificados a través de .. • https://www.exploit-db.com/exploits/12151 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 3%CPEs: 2EXPL: 4CVE-2010-1491 – Joomla! Component MMS Blog 2.3.0 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1491
23 Apr 2010 — Directory traversal vulnerability in the MMS Blog (com_mmsblog) component 2.3.0 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente MMS Blog (com_mmsblog) v2.3.0 de Joomla! permite a atacantes remotos leer ficheros de su elección y puede que tener otros impactos no especificados a través de un .. • https://www.exploit-db.com/exploits/12318 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 5CVE-2010-1493 – Joomla! Component AWDwall 1.5.4 - Local File Inclusion / SQL Injection
https://notcve.org/view.php?id=CVE-2010-1493
23 Apr 2010 — SQL injection vulnerability in the AWDwall (com_awdwall) component before 1.5.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cbuser parameter in an awdwall action to index.php. Vulnerabilidad de inyección SQL en el componente de Joomla! AWDwall (com_awdwall) antes de v1.5.5 permite a atacantes remotos ejecutar comandos SQL a través del parámetro cbuser a index.php en una acción awdwall. • https://www.exploit-db.com/exploits/12113 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 5%CPEs: 2EXPL: 4CVE-2010-1494 – Joomla! Component AWDwall 1.5.4 - Local File Inclusion / SQL Injection
https://notcve.org/view.php?id=CVE-2010-1494
23 Apr 2010 — Directory traversal vulnerability in the AWDwall (com_awdwall) component 1.5.4 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente AWDwall (com_awdwall) v1.5.4 de Joomla! permite a atacantes remotos leer ficheros de su elección mediante un .. • https://www.exploit-db.com/exploits/12113 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 5CVE-2010-1495 – Joomla! Component Matamko 1.01 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1495
23 Apr 2010 — Directory traversal vulnerability in the Matamko (com_matamko) component 1.01 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Una vulnerabilidad de salto de directorio en el componente para Joomla! Matamko (com_matamko) v1.01 permite a atacantes remotos leer ficheros arbitrarios a través de un .. • https://www.exploit-db.com/exploits/12286 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 6CVE-2010-1496 – Joomla! Component JoltCard 1.2.1 - SQL Injection
https://notcve.org/view.php?id=CVE-2010-1496
23 Apr 2010 — SQL injection vulnerability in the JoltCard (com_joltcard) component 1.2.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cardID parameter in a view action to index.php. Vulnerabilidad de inyección SQL en el componente JoltCard (com_joltcard) v1.2.1 de Joomla! permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro cardID en una acción view de index.php. • https://www.exploit-db.com/exploits/12269 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 3CVE-2009-4784 – Joomla! Component Joaktree 1.0 - SQL Injection
https://notcve.org/view.php?id=CVE-2009-4784
21 Apr 2010 — SQL injection vulnerability in the Joaktree (com_joaktree) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the treeId parameter to index.php. Vulnerabilidad de inyección SQL en el componente Joaktree (com_joaktree) v1.0 para Joomla!, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro "treeId" a index.php. • https://www.exploit-db.com/exploits/10272 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •