FL0RiX

53 exploits Active since Jan 2010
CVE-2010-0943 EXPLOITDB text WORKING POC
Joomla! JA Showcase (com_jashowcase) - Path Traversal via Controller Parameter
Directory traversal vulnerability in the JA Showcase (com_jashowcase) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in a jashowcase action to index.php.
EIP-2026-108386 EXPLOITDB text WORKING POC
Joomla! Component com_jbook - Blind SQL Injection
CVE-2010-0944 EXPLOITDB text WORKING POC
JCollection (com_jcollection) for Joomla! - Path Traversal via Controller Parameter
Directory traversal vulnerability in the JCollection (com_jcollection) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
EIP-2026-108391 EXPLOITDB text WORKING POC
Joomla! Component com_jeemaarticlecollection - SQL Injection
EIP-2026-108398 EXPLOITDB text WORKING POC
Joomla! Component com_jigsaw - 'Controller' Directory Traversal
EIP-2026-108416 EXPLOITDB text WRITEUP
Joomla! Component com_jr_tfb - 'Controller' Local File Inclusion
CVE-2010-0942 EXPLOITDB text WORKING POC
jVideoDirect (com_jvideodirect) - Path Traversal via Controller Parameter
Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-0946 EXPLOITDB text WORKING POC
com_ksadvertiser - SQL Injection via pid Parameter
SQL injection vulnerability in the Keep It Simple Stupid (KISS) Software Advertiser (com_ksadvertiser) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showcats action to index.php.
CVE-2010-0373 EXPLOITDB text WORKING POC
Joomla! com_libros - SQL Injection via id Parameter
SQL injection vulnerability in the libros (com_libros) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
CVE-2010-0694 EXPLOITDB text WORKING POC
PerchaGallery <1.5b - SQL Injection
SQL injection vulnerability in the PerchaGallery (com_perchagallery) component before 1.5b for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an editunidad action to index.php.
EIP-2026-108494 EXPLOITDB text WORKING POC
Joomla! Component com_prime - Directory Traversal
EIP-2026-108509 EXPLOITDB text WRITEUP
Joomla! Component com_rd_download - Local File Disclosure
EIP-2026-108511 EXPLOITDB text WRITEUP
Joomla! Component com_recipe - Multiple SQL Injections
EIP-2026-108551 EXPLOITDB perl WORKING POC
Joomla! Component com_spain - 'nv' SQL Injection
EIP-2026-108560 EXPLOITDB perl WORKING POC
Joomla! Component com_tax - 'eid' SQL Injection
EIP-2026-108566 EXPLOITDB text WRITEUP
Joomla! Component com_tienda - 'categoria' Cross-Site Scripting
CVE-2010-0981 EXPLOITDB text WRITEUP
TPJobs for Joomla! - SQL Injection via id_c[] Parameter
SQL injection vulnerability in the TPJobs (com_tpjobs) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id_c[] parameter in a resadvsearch action to index.php.
EIP-2026-108580 EXPLOITDB text WRITEUP
Joomla! Component com_virtualmoney 1.5 - SQL Injection
EIP-2026-108609 EXPLOITDB text WORKING POC
Joomla! Component com_zcalendar - Blind SQL Injection
EIP-2026-108720 EXPLOITDB text WRITEUP
Joomla! Component Jeformcr - 'id' SQL Injection
EIP-2026-108722 EXPLOITDB text WORKING POC
Joomla! Component JExtensions Property Finder - 'sf_id' SQL Injection
EIP-2026-108641 EXPLOITDB text WRITEUP
Joomla! Component Event Manager - Blind SQL Injection
EIP-2026-108158 EXPLOITDB text WRITEUP
Joomla! / Mambo Component com_trade - 'PID' Cross-Site Scripting
CVE-2010-4853 EXPLOITDB text WORKING POC
chillcreations com_ccinvoices - SQL Injection via id Parameter
SQL injection vulnerability in the ccInvoices (com_ccinvoices) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewInv action to index.php.
EIP-2026-108241 EXPLOITDB text WORKING POC
Joomla! Component City Portal - Blind SQL Injection