CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2006-0114
https://notcve.org/view.php?id=CVE-2006-0114
09 Jan 2006 — The vCard functions in Joomla! 1.0.5 use predictable sequential IDs for vcards and do not restrict access to them, which allows remote attackers to obtain valid e-mail addresses to conduct spam attacks by modifying the contact_id parameter to index2.php. • http://forge.joomla.org/sf/go/artf2950 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2005-3772
https://notcve.org/view.php?id=CVE-2005-3772
23 Nov 2005 — Multiple SQL injection vulnerabilities in Joomla! before 1.0.4 allow remote attackers to execute arbitrary SQL commands via the (1) Itemid variable in the Polls modules and (2) multiple unspecified methods in the mosDBTable class. • http://secunia.com/advisories/17675 •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2005-3771
https://notcve.org/view.php?id=CVE-2005-3771
23 Nov 2005 — Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.4 allow remote attackers to inject arbitrary web script or HTML via (1) "GET and other variables" and (2) "SEF". • http://secunia.com/advisories/17675 •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2005-3773
https://notcve.org/view.php?id=CVE-2005-3773
23 Nov 2005 — Unspecified vulnerability in Joomla! before 1.0.4 has unknown impact and attack vectors, related to "Potential misuse of Media component file management functions." • http://secunia.com/advisories/17675 •