CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125101 – Portfolio Gallery Plugin sql injection
https://notcve.org/view.php?id=CVE-2014-125101
27 May 2023 — A vulnerability classified as critical has been found in Portfolio Gallery Plugin up to 1.1.8 on WordPress. This affects an unknown part. The manipulation leads to sql injection. It is possible to initiate the attack remotely. Upgrading to version 1.1.9 is able to address this issue. • https://github.com/wp-plugins/portfolio-gallery/commit/58ed88243e17df766036f4857041edaf358076d3 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2016-1000120
https://notcve.org/view.php?id=CVE-2016-1000120
27 Oct 2016 — SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla Vulnerabilidad de inyección SQLi y vulnerabilidad de XSS en la extensión de catálogo Huge IT v1.0.4 para Joomla • http://extensions.joomla.org/extensions/extension/e-commerce/shopping-cart/catalog • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2016-1000115
https://notcve.org/view.php?id=CVE-2016-1000115
21 Oct 2016 — Huge-IT Portfolio Gallery manager v1.1.0 SQL Injection and XSS Inyección SQL y XSS en el gestor Huge-IT Portfolio Gallery v1.1.0 • http://huge-it.com/joomla-portfolio-gallery • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2016-1000116
https://notcve.org/view.php?id=CVE-2016-1000116
21 Oct 2016 — Huge-IT Portfolio Gallery manager v1.1.0 SQL Injection and XSS Inyección SQL y XSS en el gestor Huge-IT Portfolio Gallery v1.1.0 • http://huge-it.com/joomla-portfolio-gallery • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 2%CPEs: 1EXPL: 1CVE-2016-1000117
https://notcve.org/view.php?id=CVE-2016-1000117
21 Oct 2016 — XSS & SQLi in HugeIT slideshow v1.0.4 XSS y SQLi en diapositivas HugeIT v1.0.4 • http://extensions.joomla.org/extensions/extension/photos-a-images/slideshow/slideshow • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 2%CPEs: 1EXPL: 1CVE-2016-1000118
https://notcve.org/view.php?id=CVE-2016-1000118
21 Oct 2016 — XSS & SQLi in HugeIT slideshow v1.0.4 Vulnerabilidad de XSS y vulnerabilidad de inyección SQLi en HugeIT slideshow v1.0.4 • http://extensions.joomla.org/extensions/extension/photos-a-images/slideshow/slideshow • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2016-1000114
https://notcve.org/view.php?id=CVE-2016-1000114
06 Oct 2016 — XSS in huge IT gallery v1.1.5 for Joomla XSS en galería huge IT v1.1.5 para Joomla • http://extensions.joomla.org/extensions/extension/photos-a-images/galleries/gallery-pro • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 3CVE-2016-1000124 – Joomla! Component Huge-IT Portfolio Gallery Plugin 1.0.6 - SQL Injection
https://notcve.org/view.php?id=CVE-2016-1000124
30 Sep 2016 — Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6 Injection SQL no autenticada en Huge-IT Portfolio Gallery Plugin v1.0.6 Joomla Huge-IT Portfolio Gallery plugin version 1.0.6 suffers from a remote SQL injection vulnerability. • https://packetstorm.news/files/id/138921 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 3CVE-2016-1000125 – Joomla! Component Huge-IT Portfolio Gallery Plugin 1.0.7 - SQL Injection
https://notcve.org/view.php?id=CVE-2016-1000125
30 Sep 2016 — Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla Vulnerabilidad de inyección SQL no autenticada en Huge-IT Catalog v1.0.7 para Joomla. Joomla Huge-IT Catalog component version 1.0.7 suffers from a remote SQL injection vulnerability. • https://packetstorm.news/files/id/138914 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 6%CPEs: 1EXPL: 3CVE-2016-1000123 – Joomla! Component Huge-IT Video Gallery 1.0.9 - SQL Injection
https://notcve.org/view.php?id=CVE-2016-1000123
22 Sep 2016 — Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla Vulnerabilidad de inyección SQL no autenticada en Huge-IT Video Gallery v1.0.9 para Joomla Joomla Huge-IT Video Gallery component version 1.0.9 suffers from a remote unauthenticated SQL injection vulnerability. • https://packetstorm.news/files/id/138813 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •