Joomla : Security Vulnerabilities Published In 2008 (Sql injection)
SQL injection vulnerability in the Books (com_books) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the book_id parameter in a book_details action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-12-17 |
| Updated | 2017-09-29 |
| EPSS | 0.06% |
SQL injection vulnerability in sub_votepic.php in the Datsogallery (com_datsogallery) module 1.6 for Joomla! allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header.
| Max Base Score | 7.5 |
| Published | 2008-11-24 |
| Updated | 2017-09-29 |
| EPSS | 0.09% |
SQL injection vulnerability in the Xe webtv (com_xewebtv) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-11-21 |
| Updated | 2017-09-29 |
| EPSS | 0.11% |
SQL injection vulnerability in the Showroom Joomlearn LMS (com_lms) component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showTests task.
| Max Base Score | 7.5 |
| Published | 2008-10-29 |
| Updated | 2018-10-11 |
| EPSS | 0.06% |
SQL injection vulnerability in the EZ Store (com_ezstore) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-08-11 |
| Updated | 2017-09-29 |
| EPSS | 0.10% |
SQL injection vulnerability in the DT Register (com_dtregister) 2.2.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the eventId parameter in a pay_options action to index.php.
| Max Base Score | 6.8 |
| Published | 2008-07-24 |
| Updated | 2017-09-29 |
| EPSS | 0.26% |
SQL injection vulnerability in the beamospetition (com_beamospetition) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pet parameter to index.php.
| Max Base Score | 7.5 |
| Published | 2008-07-10 |
| Updated | 2017-09-29 |
| EPSS | 0.06% |
SQL injection vulnerability in Brightcode Weblinks (com_brightweblinks) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter.
| Max Base Score | 7.5 |
| Published | 2008-07-09 |
| Updated | 2017-09-29 |
| EPSS | 0.06% |
SQL injection vulnerability in the EXP Shop (com_expshop) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a show_payment action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-27 |
| Updated | 2017-09-29 |
| EPSS | 0.06% |
SQL injection vulnerability in the GameQ (com_gameq) component 4.0 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a page action to index.php.
| Max Base Score | 6.8 |
| Published | 2008-06-13 |
| Updated | 2018-10-11 |
| EPSS | 57.35% |
SQL injection vulnerability in the Rapid Recipe (com_rapidrecipe) component 1.6.6 and 1.6.7 for Joomla! allows remote attackers to execute arbitrary SQL commands via the recipe_id parameter in a viewrecipe action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-13 |
| Updated | 2017-10-19 |
| EPSS | 0.06% |
SQL injection vulnerability in the yvComment (com_yvcomment) component 1.16.0 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the ArticleID parameter in a comment action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-13 |
| Updated | 2017-09-29 |
| EPSS | 0.11% |
SQL injection vulnerability in the iJoomla News Portal (com_news_portal) component 1.0 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-12 |
| Updated | 2017-09-29 |
| EPSS | 0.11% |
SQL injection vulnerability in the Joomla! Bulletin Board (aka Joo!BB or com_joobb) component 0.5.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the forum parameter in a forum action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-10 |
| Updated | 2017-09-29 |
| EPSS | 0.11% |
SQL injection vulnerability in the Bible Study (com_biblestudy) component before 6.0.7c for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a mediaplayer action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-10 |
| Updated | 2017-09-29 |
| EPSS | 0.11% |
Multiple SQL injection vulnerabilities in the EXP JoomRadio (com_joomradio) component 1.0 for Joomla! allow remote attackers to execute arbitrary SQL commands via the id parameter in a (1) show_radio or (2) show_video action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-10 |
| Updated | 2018-10-11 |
| EPSS | 0.17% |
SQL injection vulnerability in the acctexp (com_acctexp) component 0.12.x and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the usage parameter in a subscribe action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-10 |
| Updated | 2017-09-29 |
| EPSS | 0.11% |
SQL injection vulnerability in the JooBlog (com_jb2) component 0.1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the CategoryID parameter in a category action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-10 |
| Updated | 2017-09-29 |
| EPSS | 0.15% |
SQL injection vulnerability in the IDoBlog (com_idoblog) component b24 and earlier and 1.0, a component for Joomla!, allows remote attackers to execute arbitrary SQL commands via the userid parameter in a userblog action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-10 |
| Updated | 2017-09-29 |
| EPSS | 0.10% |
SQL injection vulnerability in the EasyBook (com_easybook) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the gbid parameter in a deleteentry action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-06 |
| Updated | 2017-09-29 |
| EPSS | 0.10% |
SQL injection vulnerability in the Simple Shop Galore (com_simpleshop) component 3.4 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a browse action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-06 |
| Updated | 2017-10-19 |
| EPSS | 0.14% |
SQL injection vulnerability in the JotLoader (com_jotloader) component 1.2.1.a and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter to index.php.
| Max Base Score | 7.5 |
| Published | 2008-06-06 |
| Updated | 2017-09-29 |
| EPSS | 0.11% |
SQL injection vulnerability in the xsstream-dm (com_xsstream-dm) component 0.01 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the movie parameter to index.php.
| Max Base Score | 7.5 |
| Published | 2008-05-27 |
| Updated | 2018-10-11 |
| EPSS | 0.06% |
SQL injection vulnerability in index.php in the FlippingBook (com_flippingbook) 1.0.4 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the book_id parameter.
| Max Base Score | 7.5 |
| Published | 2008-05-06 |
| Updated | 2017-09-29 |
| EPSS | 0.06% |
SQL injection vulnerability in the Profiler (com_comprofiler) component in Community Builder for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the user parameter in a userProfile action to index.php.
| Max Base Score | 7.5 |
| Published | 2008-05-06 |
| Updated | 2017-09-29 |
| EPSS | 0.06% |