CVE-2012-2902
https://notcve.org/view.php?id=CVE-2012-2902
Unrestricted file upload vulnerability in editor/extensions/browser/file.php in the Joomla Content Editor (JCE) component before 2.1 for Joomla!, when chunking is set to greater than zero, allows remote authors to execute arbitrary PHP code by uploading a PHP file with a double extension as demonstrated by .jpg.pht. Vulnerabilidad de subida de archivos sin restricción en editor/extensions/browser/file.php en el componente Joomla Content Editor (JCE) anteriores a v2.1 para Joomla!, cunado el valor «chunking» está fijado a un valor mayor que 0, permite a autores remotos ejecutar código de su elección subiendo un archivo con una doble extensión en su nombre, como se ha demostrado con el nombre de archivo .jpg.pht. • http://osvdb.org/81980 http://secunia.com/advisories/49206 http://secunia.com/secunia_research/2012-15 http://www.joomlacontenteditor.net/news/item/jce-21-released?category_id=32 http://www.securityfocus.com/bid/51002 https://exchange.xforce.ibmcloud.com/vulnerabilities/75671 •
CVE-2012-2901
https://notcve.org/view.php?id=CVE-2012-2901
Cross-site scripting (XSS) vulnerability in the Profile List in the Joomla Content Editor (JCE) component before 2.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the search parameter to administrator/index.php. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la lista de perfiles ("Profile List") del componente Joomla Content Editor (JCE) en versiones anteriores a la 2.1 de Joomla!. Permite a atacantes remotos inyectar codigo de script web o código HTML de su elección a través del parametro search de administrator/index.php. • http://secunia.com/advisories/49206 http://secunia.com/secunia_research/2012-14 http://www.joomlacontenteditor.net/news/item/jce-21-released?category_id=32 http://www.securityfocus.com/bid/53559 https://exchange.xforce.ibmcloud.com/vulnerabilities/75670 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2006-6420
https://notcve.org/view.php?id=CVE-2006-6420
Multiple cross-site scripting (XSS) vulnerabilities in jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor (JCE) 1.1.0 beta 2 and earlier for Joomla! (com_jce) allow remote attackers to inject arbitrary web script or HTML via the (1) img, (2) title, (3) w, or (4) h parameter, different vectors than CVE-2006-6166. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. Múltiples vulnerabildades de secuencias de comandos en sitios cruzandos (XSS) en jce.php en JCE Admin Component en Ryan Demmer Joomla Content Editor (JCE) 1.1.0 beta 2 y anteriores para Joomla! (com_jce) permite a un atacante remoto inyectar secuencias de comandos web o HTML a través de los parámetros (1) img, (2) title, (3) w, o (4) h, vectores diferentes que CVE-2006-6166. • http://secunia.com/advisories/23160 http://www.securityfocus.com/bid/21496 http://www.vupen.com/english/advisories/2006/4903 https://exchange.xforce.ibmcloud.com/vulnerabilities/30799 •
CVE-2006-6419
https://notcve.org/view.php?id=CVE-2006-6419
jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor (JCE) 1.1.0 beta 2 and earlier for Joomla! (com_jce) allows remote attackers to include and possibly execute arbitrary local files via the (1) plugin or (2) file parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. jce.php en JCE Admin Component en Ryan Demmer Joomla Content Editor (JCE) 1.1.0 beta 2 y anteriores para Joomla! (com_jce) permite a un atacante remoto añadir y posiblemente ejecutar archivos locales de su elección a través de los parámetros (1) plugin o(2) file. NOTA: la procedencia de esta información es desconocida; los detalles han sido obtenidos a partir de la información de terceros. • http://secunia.com/advisories/23160 http://www.securityfocus.com/bid/21491 http://www.vupen.com/english/advisories/2006/4903 https://exchange.xforce.ibmcloud.com/vulnerabilities/30798 •