National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): Joomla
  • Search Type: Search All
There are 1,055 matching records.
Displaying matches 841 through 860.
Vuln ID Summary CVSS Severity
CVE-2008-1427

SQL injection vulnerability in the Joobi Acajoom (com_acajoom) 1.1.5 and 1.2.5 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the mailingid parameter in a mailing view action to index.php.

Published: March 20, 2008; 02:44:00 PM -04:00
    V2: 7.5 HIGH
CVE-2008-1297

SQL injection vulnerability in index.php in the eWriting (com_ewriting) 1.2.1 module for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in a selectcat action.

Published: March 12, 2008; 01:44:00 PM -04:00
    V2: 7.5 HIGH
CVE-2008-1137

SQL injection vulnerability in the Garys Cookbook (com_garyscookbook) 1.1.1 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.

Published: March 04, 2008; 03:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-1077

SQL injection vulnerability in index.php in the Simpleboard (com_simpleboard) 1.0.3 Stable component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a view action.

Published: February 28, 2008; 07:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0916

SQL injection vulnerability in the Highwood Design hwdVideoShare (com_hwdvideoshare) 1.1.3 Alpha component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a viewcategory action to index.php.

Published: February 22, 2008; 06:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0918

SQL injection vulnerability in includes/count_dl_or_link.inc.php in the astatsPRO (com_astatspro) 1.0.1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to getfile.php, a different vector than CVE-2008-0839. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published: February 22, 2008; 06:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0849

SQL injection vulnerability in index.php in the Downloads (com_downloads) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in a selectcat function, a different vector than CVE-2008-0652.

Published: February 20, 2008; 07:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0853

SQL injection vulnerability in the com_detail component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. NOTE: this issue might be site-specific. If so, it should not be included in CVE.

Published: February 20, 2008; 07:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0854

SQL injection vulnerability in the com_salesrep component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the rid parameter in a showrep action to index.php.

Published: February 20, 2008; 07:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0855

SQL injection vulnerability in the Facile Forms (com_facileforms) component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.

Published: February 20, 2008; 07:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0839

SQL injection vulnerability in refer.php in the astatsPRO (com_astatspro) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.

Published: February 20, 2008; 04:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0841

SQL injection vulnerability in index.php in the Giorgio Nordo Ricette (com_ricette) 1.0 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter.

Published: February 20, 2008; 04:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0842

SQL injection vulnerability in index.php in the Classifier (com_clasifier) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.

Published: February 20, 2008; 04:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0844

SQL injection vulnerability in index.php in the PccookBook (com_pccookbook) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the user_id parameter.

Published: February 20, 2008; 04:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0846

SQL injection vulnerability in index.php in the com_profile component for Joomla! allows remote attackers to execute arbitrary SQL commands via the oid parameter.

Published: February 20, 2008; 04:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0831

Multiple SQL injection vulnerabilities in the Rapid Recipe (com_rapidrecipe) 1.6.5 and earlier component for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) user_id or (2) category_id parameter. NOTE: this might overlap CVE-2008-0754.

Published: February 20, 2008; 02:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0832

SQL injection vulnerability in index.php in the Kemas Antonius com_quran 1.1 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the surano parameter in a viewayat action.

Published: February 20, 2008; 02:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0833

SQL injection vulnerability in index.php in the com_galeria component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action.

Published: February 20, 2008; 02:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0829

SQL injection vulnerability in jooget.php in the Joomlapixel Jooget! (com_jooget) 2.6.8 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail task.

Published: February 19, 2008; 04:44:00 PM -05:00
    V2: 7.5 HIGH
CVE-2008-0810

SQL injection vulnerability in the com_scheduling module for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter.

Published: February 18, 2008; 09:00:00 PM -05:00
    V2: 7.5 HIGH