) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
Search Parameters:
- CPE Product Version: cpe:/a:j2store:j2store:2.6.1::~~~joomla%21~~
There are 2 matching records.
Displaying matches 1 through 2.
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2020-13996 |
The J2Store plugin before 3.3.13 for Joomla! allows a SQL injection attack by a trusted store manager. Published: June 09, 2020; 5:15:10 PM -0400 |
V3.1: 8.8 HIGH V2.0: 6.5 MEDIUM |
| CVE-2015-6513 |
Multiple SQL injection vulnerabilities in the J2Store (com_j2store) extension before 3.1.7 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) sortby or (2) manufacturer_ids[] parameter to index.php. Published: August 18, 2015; 11:59:13 AM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |