ALTBTA

17 exploits Active since Feb 2010
CVE-2010-2513 EXPLOITDB WORKING POC
Harmistechnology Com Jeajaxeventcalendar - SQL Injection
SQL injection vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php.
CVE-2010-1344 EXPLOITDB text WORKING POC
Cookex Agency CKForms <1.3.3 - SQL Injection
SQL injection vulnerability in the Cookex Agency CKForms (com_ckforms) component 1.3.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter in a detail action to index.php.
EIP-2026-112695 EXPLOITDB text WORKING POC
tincan ltd - 'section' SQL Injection
EIP-2026-109810 EXPLOITDB text WORKING POC
myUPB 2.2.6 - Multiple Vulnerabilities
CVE-2010-2122 EXPLOITDB text WORKING POC
com_simpledownload < 0.9.6 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the SimpleDownload (com_simpledownload) component before 0.9.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-0610 EXPLOITDB text WRITEUP
com_photoblog - SQL Injection via Blog Parameter
Multiple SQL injection vulnerabilities in the Photoblog (com_photoblog) component for Joomla! allow remote attackers to execute arbitrary SQL commands via the blog parameter in an images action to index.php. NOTE: a separate vector for the id parameter to detail.php may also exist.
EIP-2026-108522 EXPLOITDB text WORKING POC
Joomla! Component com_rwcards - Local File Inclusion
CVE-2010-1345 EXPLOITDB text WORKING POC
Cookex Agency CKForms <1.3.3 - Path Traversal
Directory traversal vulnerability in the Cookex Agency CKForms (com_ckforms) component 1.3.3 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-4365 EXPLOITDB text WORKING POC
Harmistechnology Com Jeajaxeventcalendar - SQL Injection
SQL injection vulnerability in JE Ajax Event Calendar (com_jeajaxeventcalendar) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an alleventlist_more action to index.php.
CVE-2010-2128 EXPLOITDB text WORKING POC
JE Quotation Form (com_jequoteform) 1.0b1 - Path Traversal via View Parameter
Directory traversal vulnerability in the JE Quotation Form (com_jequoteform) component 1.0b1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the view parameter to index.php.
EIP-2026-108549 EXPLOITDB text WORKING POC
Joomla! Component com_spa - SQL Injection (1)
EIP-2026-108252 EXPLOITDB text WORKING POC
Joomla! Component com_acteammember - SQL Injection
CVE-2010-1345 EXPLOITDB text WORKING POC
Cookex Agency CKForms <1.3.3 - Path Traversal
Directory traversal vulnerability in the Cookex Agency CKForms (com_ckforms) component 1.3.3 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
EIP-2026-108340 EXPLOITDB text WORKING POC
Joomla! Component com_event - Multiple Vulnerabilities
EIP-2026-108478 EXPLOITDB text WORKING POC
Joomla! Component com_people 1.0.0 - Local File Inclusion
EIP-2026-107032 EXPLOITDB text WORKING POC
Factux - Local File Inclusion
EIP-2026-105296 EXPLOITDB text WORKING POC
Auction_Software Script - Admin Authentication Bypass