CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 3CVE-2009-4785 – Joomla! Component Quick News - SQL Injection
https://notcve.org/view.php?id=CVE-2009-4785
21 Apr 2010 — SQL injection vulnerability in the Quick News (com_quicknews) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the newsid parameter in a view_item action to index.php. Vulnerabilidad de inyección SQL en el componente Quick News (com_quicknews) para Joomla!, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro "newsid" en una acción view_item al index.php. • https://www.exploit-db.com/exploits/10252 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 3CVE-2009-4789 – Joomla! Component MojoBlog 0.15 - Multiple Remote File Inclusions
https://notcve.org/view.php?id=CVE-2009-4789
21 Apr 2010 — Multiple PHP remote file inclusion vulnerabilities in the MojoBlog component RC 0.15 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) wp-comments-post.php and (2) wp-trackback.php. Múltiples vulnerabilidades de inclusión remota de archivo PHP en el componente MojoBlog RC v0.15 para Joomla!, permite a atacantes remotos ejecutar código PHP de su elección a través de una URL en el parámetro mosConfig_absolute_path a (1) wp-comments-post.... • https://www.exploit-db.com/exploits/10273 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 5CVE-2010-1468 – Joomla! Component Multi-Venue Restaurant Menu Manager 1.5.2 - SQL Injection
https://notcve.org/view.php?id=CVE-2010-1468
19 Apr 2010 — SQL injection vulnerability in the Multi-Venue Restaurant Menu Manager (aka MVRMM or com_mv_restaurantmenumanager) component 1.5.2 Stable Update 3 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the mid parameter in a menu_display action to index.php. Vulnerabilidad de inyección SQL en el comoponente Multi-Venue Restaurant Menu Manager (también conocido como MVRMM o com_mv_restaurantmenumanager) v1.5.2 Stable Update 3 y anteriores para Joomla!, permite a atacantes remot... • https://www.exploit-db.com/exploits/12159 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.1EPSS: 4%CPEs: 2EXPL: 3CVE-2010-1469 – Joomla! Component JProject Manager 1.0 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1469
19 Apr 2010 — Directory traversal vulnerability in the Ternaria Informatica JProject Manager (com_jprojectmanager) component 1.0 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Ternaria Informatica JProject Manager (com_jprojectmanager) component 1.0 para Joomla!, permite a atacantes remotos leer ficheros locales de su elección y posiblemente tener otro... • https://www.exploit-db.com/exploits/12146 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 13%CPEs: 2EXPL: 3CVE-2010-1470 – Joomla! Component Web TV 1.0 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1470
19 Apr 2010 — Directory traversal vulnerability in the Web TV (com_webtv) component 1.0 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Web TV (com_webtv) v1.0 para Joomla!, permite a atacantes remotos leer ficheros locales de su elección y posiblemente tener otros efectos no determinados a través de los caracteres ".." • https://www.exploit-db.com/exploits/12166 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 26%CPEs: 2EXPL: 3CVE-2010-1471 – Joomla! Component Address Book 1.5.0 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1471
19 Apr 2010 — Directory traversal vulnerability in the AddressBook (com_addressbook) component 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente AddressBook (com_addressbook) component 1.5.0 para Joomla!, permite a atacantes remotos leer ficheros locales de su elección a través de los caracteres ".." • https://www.exploit-db.com/exploits/12170 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 12%CPEs: 2EXPL: 3CVE-2010-1472 – Joomla! Component Horoscope 1.5.0 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1472
19 Apr 2010 — Directory traversal vulnerability in the Daily Horoscope (com_horoscope) component 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Daily Horoscope (com_horoscope) component 1.5.0 para Joomla!, permite a atacantes remotos leer ficheros locales de su elección a través de los caracteres ".." • https://www.exploit-db.com/exploits/12167 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 3%CPEs: 2EXPL: 3CVE-2010-1473 – Joomla! Component Advertising 0.25 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1473
19 Apr 2010 — Directory traversal vulnerability in the Advertising (com_advertising) component 0.25 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Advertising (com_advertising) 0.25 para Joomla!, permite a atacantes remotos leer ficheros locales de su elección y posiblemente otros efectos sin determinar al utilizar caracteres .. • https://www.exploit-db.com/exploits/12171 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 1%CPEs: 2EXPL: 4CVE-2010-1474 – Joomla! Component Sweetykeeper 1.5 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1474
19 Apr 2010 — Directory traversal vulnerability in the Sweety Keeper (com_sweetykeeper) component 1.5.x for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Sweety Keeper (com_sweetykeeper) 1.5.x para Joomla!, permite a atacantes remotos leer ficheros locales de su elección y posiblemente otros impactos no determinados al utilizar caracteres .. • https://www.exploit-db.com/exploits/12182 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 2%CPEs: 2EXPL: 4CVE-2010-1475 – Joomla! Component Preventive And Reservation 1.0.5 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2010-1475
19 Apr 2010 — Directory traversal vulnerability in the Preventive & Reservation (com_preventive) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. Vulnerabilidad de salto de directorio en el componente Preventive & Reservation (com_preventive) v1.0.5 para Joomla!, permite a atacantes remotos leer ficheros locales de su elección y posiblemente tener otros impactos al utilizar caracteres ".." • https://www.exploit-db.com/exploits/12147 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •