S@BUN

147 exploits Active since May 2004
CVE-2008-0686 EXPLOITDB text WORKING POC
Joomla com_neoreferences 1.3.1 and 1.3.3 - SQL Injection via catid Parameter
SQL injection vulnerability in index.php in the NeoReferences (com_neoreferences) 1.3.1 and 1.3.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter.
CVE-2008-0801 EXPLOITDB text WORKING POC
PAXXGallery (com_paxxgallery) 0.2 - SQL Injection via iid Parameter
SQL injection vulnerability in index.php in the PAXXGallery (com_paxxgallery) 0.2 component for Mambo and Joomla! allow remote attackers to execute arbitrary SQL commands via (1) the iid parameter in a view action, and possibly (2) the userid parameter.
CVE-2008-0761 EXPLOITDB text WORKING POC
Joomla com_pcchess < 0.8 - SQL Injection via user_id Parameter
SQL injection vulnerability in index.php in the Prince Clan Chess Club (com_pcchess) 0.8 and earlier component for Joomla! allows remote attackers to execute arbitrary SQL commands via the user_id parameter in a players action.
EIP-2026-108835 EXPLOITDB text WORKING POC
Joomla! Component ProductShowcase 1.5 - SQL Injection
CVE-2008-0799 EXPLOITDB text WORKING POC
Joomla com_quiz < 0.81 - SQL Injection via tid Parameter
SQL injection vulnerability in index.php in the Quiz (com_quiz) 0.81 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a user_tst_shw action.
CVE-2008-0831 EXPLOITDB text WORKING POC
Joomla Rapid Recipe < 1.6.5 - SQL Injection via user_id or category_id Parameter
Multiple SQL injection vulnerabilities in the Rapid Recipe (com_rapidrecipe) 1.6.5 and earlier component for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) user_id or (2) category_id parameter. NOTE: this might overlap CVE-2008-0754.
CVE-2008-1465 EXPLOITDB text WORKING POC
Detodas Restaurante (com_restaurante) 1.0 - SQL Injection
SQL injection vulnerability in the Detodas Restaurante (com_restaurante) 1.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php, a different product than CVE-2008-0562.
EIP-2026-108856 EXPLOITDB text WORKING POC
Joomla! Component simple shop 2.0 - SQL Injection
EIP-2026-109056 EXPLOITDB text WORKING POC
KwsPHP 1.3.456 Module Archives - 'id' SQL Injection
CVE-2008-6197 EXPLOITDB text WORKING POC
KwsPHP galerie_module - SQL Injection via id_gal Parameter
SQL injection vulnerability in index.php in the galerie module for KwsPHP 1.3.456 allows remote attackers to execute arbitrary SQL commands via the id_gal parameter in a gal action.
CVE-2008-0817 EXPLOITDB text WORKING POC
com_filebase component for Joomla! and Mambo - SQL Injection via filecatid Parameter
SQL injection vulnerability in the com_filebase component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the filecatid parameter in a selectfolder action.
CVE-2008-0829 EXPLOITDB text WORKING POC
Joomlapixel Jooget! 2.6.8 - SQL Injection via id Parameter
SQL injection vulnerability in jooget.php in the Joomlapixel Jooget! (com_jooget) 2.6.8 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail task.
EIP-2026-108674 EXPLOITDB text WORKING POC
Joomla! Component iJoomla! com_magazine - 'pageid' SQL Injection
CVE-2008-0916 EXPLOITDB text WORKING POC
hwdVideoShare 1.1.3 Alpha - SQL Injection via cat_id Parameter
SQL injection vulnerability in the Highwood Design hwdVideoShare (com_hwdvideoshare) 1.1.3 Alpha component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a viewcategory action to index.php.
EIP-2026-108619 EXPLOITDB text WORKING POC
Joomla! Component d3000 1.0.0 - SQL Injection
CVE-2008-0844 EXPLOITDB text WORKING POC
Joomla com_pccookbook - SQL Injection via user_id Parameter
SQL injection vulnerability in index.php in the PccookBook (com_pccookbook) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
EIP-2026-108450 EXPLOITDB text WORKING POC
Joomla! Component com_mygallery - 'cid' SQL Injection
CVE-2008-0833 EXPLOITDB text WORKING POC
Joomla com_galeria - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the com_galeria component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action.
CVE-2008-0772 EXPLOITDB text WORKING POC
com_doc - SQL Injection via sid Parameter
SQL injection vulnerability in index.php in the com_doc component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the sid parameter in a view task.
CVE-2008-0842 EXPLOITDB text WORKING POC
Joomla com_clasifier - SQL Injection via cat_id Parameter
SQL injection vulnerability in index.php in the Classifier (com_clasifier) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
EIP-2026-108240 EXPLOITDB text WORKING POC
Joomla! Component Cinema 1.0 - SQL Injection
EIP-2026-108228 EXPLOITDB text WORKING POC
Joomla! Component Candle 1.0 - 'cid' SQL Injection
CVE-2008-1459 EXPLOITDB text WORKING POC
com_alberghi 2.1.3 - SQL Injection via id Parameter
SQL injection vulnerability in the Alberghi (com_alberghi) 2.1.3 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
EIP-2026-108167 EXPLOITDB text WORKING POC
Joomla! / Mambo Component Referenzen - 'id' SQL Injection
EIP-2026-108160 EXPLOITDB text WORKING POC
Joomla! / Mambo Component com_wines 1.0 - 'id' SQL Injection