Page 7 of 34 results (0.005 seconds)

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

Joomla! 1.03 does not restrict the number of "Search" Mambots, which allows remote attackers to cause a denial of service (resource consumption) via a large number of Search Mambots. • http://secunia.com/advisories/17675 http://www.joomla.org/content/view/499/66 http://www.osvdb.org/21041 • CWE-770: Allocation of Resources Without Limits or Throttling •

CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0

Multiple SQL injection vulnerabilities in Joomla! before 1.0.4 allow remote attackers to execute arbitrary SQL commands via the (1) Itemid variable in the Polls modules and (2) multiple unspecified methods in the mosDBTable class. • http://secunia.com/advisories/17675 http://www.joomla.org/content/view/499/66 http://www.osvdb.org/21042 http://www.osvdb.org/21043 http://www.securityfocus.com/bid/15526 http://www.vupen.com/english/advisories/2005/2526 https://exchange.xforce.ibmcloud.com/vulnerabilities/23177 https://exchange.xforce.ibmcloud.com/vulnerabilities/23178 •

CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0

Unspecified vulnerability in Joomla! before 1.0.4 has unknown impact and attack vectors, related to "Potential misuse of Media component file management functions." • http://secunia.com/advisories/17675 http://www.joomla.org/content/view/499/66 http://www.securityfocus.com/bid/15526 http://www.vupen.com/english/advisories/2005/2526 •

CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0

Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.4 allow remote attackers to inject arbitrary web script or HTML via (1) "GET and other variables" and (2) "SEF". • http://secunia.com/advisories/17675 http://www.joomla.org/content/view/499/66 http://www.osvdb.org/21039 http://www.osvdb.org/21040 http://www.securityfocus.com/bid/15526 http://www.vupen.com/english/advisories/2005/2526 •