Cameron

4 exploits Active since Apr 2017
CVE-2022-27913 NOMISEC MEDIUM SCANNER
Joomla! < 4.2.3 - XSS
An issue was discovered in Joomla! 4.2.0 through 4.2.3. Inadequate filtering of potentially malicious user input leads to reflected XSS vulnerabilities in various components.
1 stars
CVSS 6.1
CVE-2017-8098 WRITEUP MEDIUM WRITEUP
E107 - CSRF
e107 2.1.4 is vulnerable to cross-site request forgery in plugin-installing, meta-changing, and settings-changing. A malicious web page can use forged requests to make e107 download and install a plug-in provided by the attacker.
CVSS 6.5
CVE-2018-16388 WRITEUP HIGH WRITEUP
E107 - Unrestricted File Upload
e107_web/js/plupload/upload.php in e107 2.1.8 allows remote attackers to execute arbitrary PHP code by uploading a .php filename with the image/jpeg content type.
CVSS 7.2
CVE-2018-16389 WRITEUP MEDIUM WRITEUP
E107 - SQL Injection
e107_admin/banlist.php in e107 2.1.8 allows SQL injection via the old_ip parameter.
CVSS 6.5