Shodan
Vulnerabilities
Vulnerable Software
Joomla:  >> Joomla  >> 1.0.7  Security Vulnerabilities
CVE-2006-6832
Cross-site scripting (XSS) vulnerability in Joomla! before 1.0.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to poll.php or the module title.
CVSS Score
4.3
EPSS Score
0.0
Published
2006-12-31
CVE-2006-6833
com_categories in Joomla! before 1.0.12 does not validate input, which has unknown impact and remote attack vectors.
CVSS Score
7.5
EPSS Score
0.0
Published
2006-12-31
CVE-2006-6834
Multiple unspecified vulnerabilities in Joomla! before 1.0.12 have unknown impact and attack vectors related to (1) "unneeded legacy functions" and (2) "Several low level security fixes."
CVSS Score
6.8
EPSS Score
0.0
Published
2006-12-31
CVE-2006-3480
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.10 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters involving the (1) getUserStateFromRequest function, and the (2) SEF and (3) com_messages modules.
CVSS Score
5.8
EPSS Score
0.0
Published
2006-07-10
CVE-2006-3481
Multiple SQL injection vulnerabilities in Joomla! before 1.0.10 allow remote attackers to execute arbitrary SQL commands via unspecified parameters involving the (1) "Remember Me" function, (2) "Related Items" module, and the (3) "Weblinks submission".
CVSS Score
7.5
EPSS Score
0.0
Published
2006-07-10
CVE-2006-1956
The com_rss option (rss.php) in (1) Mambo and (2) Joomla! allows remote attackers to obtain sensitive information via an invalid feed parameter, which reveals the path in an error message.
CVSS Score
5.0
EPSS Score
0.0
Published
2006-04-21
CVE-2006-1047
Unspecified vulnerability in the "Remember Me login functionality" in Joomla! 1.0.7 and earlier has unknown impact and attack vectors.
CVSS Score
10.0
EPSS Score
0.0
Published
2006-03-07
CVE-2006-1048
Joomla! 1.0.7 and earlier allows attackers to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the (1) Weblink, (2) Polls, (3) Newsfeeds, (4) Weblinks, (5) Content, (6) Content Section, (7) Content Category, (8) Contact items, or (9) Contact Search, (10) Content Search, (11) Newsfeed Search, or (12) Weblink Search.
CVSS Score
5.0
EPSS Score
0.0
Published
2006-03-07
CVE-2006-1027
feedcreator.class.php (aka the syndication component) in Joomla! 1.0.7 allows remote attackers to obtain sensitive information via a "/" (slash) in the feed parameter to index.php, which reveals the path in an error message.
CVSS Score
5.0
EPSS Score
0.0
Published
2006-03-07
CVE-2006-1028
feedcreator.class.php (aka the syndication component) in Joomla! 1.0.7 allows remote attackers to cause a denial of service (stressed file cache) by creating many files via filenames in the feed parameter to index.php.
CVSS Score
7.8
EPSS Score
0.0
Published
2006-03-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved