Shodan
Vulnerabilities
Vulnerable Software
Joomla:  >> Joomla!  >> 1.5.10  Security Vulnerabilities
CVE-2010-1433
Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
CVSS Score
9.8
EPSS Score
0.0
Published
2021-06-21
CVE-2010-1434
Joomla! Core is prone to a session fixation vulnerability. An attacker may leverage this issue to hijack an arbitrary session and gain access to sensitive information, which may help in launching further attacks. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
CVSS Score
7.5
EPSS Score
0.0
Published
2021-06-21
CVE-2010-1435
Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the database through an already existing SQL injection vector. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
CVSS Score
9.8
EPSS Score
0.0
Published
2021-06-21
CVE-2010-1432
Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
CVSS Score
7.5
EPSS Score
0.0
Published
2021-06-21
CVE-2011-4912
Joomla! com_mailto 1.5.x through 1.5.13 has an automated mail timeout bypass.
CVSS Score
5.3
EPSS Score
0.0
Published
2020-02-04
CVE-2011-4937
Joomla! 1.7.1 has core information disclosure due to inadequate error checking.
CVSS Score
7.5
EPSS Score
0.0
Published
2020-02-04
CVE-2011-3629
Joomla! core 1.7.1 allows information disclosure due to weak encryption
CVSS Score
7.5
EPSS Score
0.0
Published
2020-02-04
CVE-2011-3595
Multiple Cross-site Scripting (XSS) vulnerabilities exist in Joomla! through 1.7.0 in index.php in the search word, extension, asset, and author parameters.
CVSS Score
5.4
EPSS Score
0.0
Published
2020-01-22
CVE-2011-4907
Joomla! 1.5x through 1.5.12: Missing JEXEC Check
CVSS Score
5.3
EPSS Score
0.0
Published
2020-01-15
CVE-2012-1562
Joomla! core before 2.5.3 allows unauthorized password change.
CVSS Score
7.5
EPSS Score
0.0
Published
2020-01-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved