CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jomres: Security Vulnerabilities

CVE-2013-3932

SQL injection vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to execute arbitrary SQL commands via the id parameter in an editProfile action to administrator/index.php.

CVSS Score

8.8

EPSS Score

0.013

Published

2020-01-02

CVE-2013-3931

Cross-site scripting (XSS) vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to inject arbitrary web script or HTML via the property_name parameter, related to editing property details.

CVSS Score

5.4

EPSS Score

0.003

Published

2020-01-02

Page 1

Vulnerabilities

Vulnerable Software

Jomres: Security Vulnerabilities

Products

Pricing

Contact Us