S@BUN

147 exploits Active since May 2004
CVE-2008-0603 EXPLOITDB text WORKING POC
amazOOP Awesom! 0.3.2 - SQL Injection via listid Parameter
SQL injection vulnerability in index.php in the amazOOP Awesom! (com_awesom) 0.3.2component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter in a viewlist task.
CVE-2008-0652 EXPLOITDB text WORKING POC
Joomla com_downloads - SQL Injection via filecatid Parameter
SQL injection vulnerability in index.php in the Downloads (com_downloads) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the filecatid parameter in a selectfolder action.
CVE-2008-0561 EXPLOITDB text WORKING POC
Arthur Konze AkoGallery 2.5 beta - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the Arthur Konze AkoGallery (com_akogallery) 2.5 beta component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action.
CVE-2008-0557 EXPLOITDB text WORKING POC
CatalogShop 1.0b1 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the CatalogShop (com_catalogshop) 1.0b1 componenent for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action.
CVE-2008-0512 EXPLOITDB text WORKING POC
Joomla com_fq - SQL Injection via listid Parameter
SQL injection vulnerability in index.php in the fq (com_fq) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter.
CVE-2008-0514 EXPLOITDB text WORKING POC
Joomla Glossary Component - SQL Injection via catid Parameter
SQL injection vulnerability in index.php in the Glossary (com_glossary) 2.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a display action.
CVE-2008-0511 EXPLOITDB text WORKING POC
Joomla! and Mambo com_mamml - SQL Injection via listid Parameter
SQL injection vulnerability in index.php in the MaMML (com_mamml) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter.
CVE-2008-0510 EXPLOITDB text WORKING POC
Joomla! and Mambo Newsletter Component - SQL Injection via listid Parameter
SQL injection vulnerability in index.php in the Newsletter (com_newsletter) component for Mambo 4.5 and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter.
EIP-2026-109279 EXPLOITDB text WORKING POC
Mambo Component Accombo 1.x - 'id' SQL Injection
EIP-2026-109281 EXPLOITDB text WORKING POC
Mambo Component Ahsshop 1.51 - 'vara' SQL Injection
EIP-2026-109359 EXPLOITDB text WORKING POC
MAXdev My eGallery Module 3.04 - For Xoops 'gid' SQL Injection
CVE-2008-0606 EXPLOITDB text WORKING POC
Joomla com_shambo2 - SQL Injection via Itemid Parameter
SQL injection vulnerability in index.php in the Shambo2 (com_shambo2) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter.
CVE-2008-0721 EXPLOITDB text WORKING POC
Mambo com_sermon 0.2 - SQL Injection via gid Parameter
SQL injection vulnerability in index.php in the Sermon (com_sermon) 0.2 component for Mambo allows remote attackers to execute arbitrary SQL commands via the gid parameter.
CVE-2008-0841 EXPLOITDB text WORKING POC
Joomla com_ricette Component - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the Giorgio Nordo Ricette (com_ricette) 1.0 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-0562 EXPLOITDB text WORKING POC
Joomla Restaurant Component 1.0 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the Restaurant (com_restaurant) 1.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action.
CVE-2008-0518 EXPLOITDB text WORKING POC
com_recipes - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the Recipes (com_recipes) 1.00 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action.
CVE-2008-0579 EXPLOITDB text WORKING POC
Joomla com_buslicense - SQL Injection via aid Parameter
SQL injection vulnerability in index.php in the buslicense (com_buslicense) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in a list action.
CVE-2008-0519 EXPLOITDB text WORKING POC
com_jokes - SQL Injection via CatView Cat Parameter
SQL injection vulnerability in index.php in the Atapin Jokes (com_jokes) 1.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in a CatView action.
CVE-2008-1137 EXPLOITDB text WORKING POC
Garys Cookbook <1.1.1 - SQL Injection
SQL injection vulnerability in the Garys Cookbook (com_garyscookbook) 1.1.1 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
CVE-2008-0517 EXPLOITDB text WORKING POC
Mambo - SQL Injection via EstateAgent Component objid Parameter
SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote attackers to execute arbitrary SQL commands via the objid parameter in a contact showObject action.
CVE-2008-0746 EXPLOITDB text WORKING POC
com_gallery - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the Gallery (com_gallery) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action.
CVE-2008-0795 EXPLOITDB text WORKING POC
MGFi XfaQ 1.2 for Joomla and Mambo - SQL Injection via aid Parameter
SQL injection vulnerability in index.php in the MGFi XfaQ (com_xfaq) 1.2 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an answer action.
CVE-2008-1460 EXPLOITDB text WORKING POC
com_joovideo 1.0 and 1.2.2 - SQL Injection via id Parameter
SQL injection vulnerability in the Joovideo (com_joovideo) 1.0 and 1.2.2 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
CVE-2008-0800 EXPLOITDB text WORKING POC
Joomla com_mcquiz 0.9 Final - SQL Injection via tid Parameter
SQL injection vulnerability in index.php in the McQuiz (com_mcquiz) 0.9 Final component for Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a user_tst_shw action.
CVE-2008-0752 EXPLOITDB text WORKING POC
Joomla com_neogallery 1.1 - SQL Injection via catid Parameter
SQL injection vulnerability in index.php in the Neogallery (com_neogallery) 1.1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a show action.