Sid3^effects aKa HaRi

72 exploits Active since May 2010
CVE-2010-2680 EXPLOITDB text WRITEUP
Joomla! - Path Traversal
Directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesectionfinder) component for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the view parameter to index.php.
CVE-2010-4990 EXPLOITDB text WRITEUP
com_addressbook - SQL Injection via Itemid Parameter
SQL injection vulnerability in the Front-edit Address Book (com_addressbook) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a contact action to index.php.
EIP-2026-108212 EXPLOITDB text WRITEUP
Joomla! Component Article Factory Manager - Arbitrary File Upload
CVE-2010-5003 EXPLOITDB text WRITEUP
Joomla! AutarTimonial 1.0.8 - SQL Injection
SQL injection vulnerability in the AutarTimonial (com_autartimonial) component 1.0.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the limit parameter in an autartimonial action to index.php. NOTE: some of these details are obtained from third party information.
EIP-2026-108313 EXPLOITDB text WRITEUP
Joomla! Component com_community - Persistent Cross-Site Scripting
EIP-2026-108332 EXPLOITDB text WRITEUP
Joomla! Component com_djClassifieds 0.9.1 - Arbitrary File Upload
EIP-2026-108388 EXPLOITDB text WRITEUP
Joomla! Component com_jcommunity - SQL Injection
EIP-2026-108393 EXPLOITDB text WRITEUP
Joomla! Component com_jejob - Local File Inclusion
EIP-2026-108394 EXPLOITDB text WRITEUP
Joomla! Component com_jesectionfinder - Arbitrary File Upload
EIP-2026-108400 EXPLOITDB text WRITEUP
Joomla! Component com_jmarket - SQL Injection
EIP-2026-108403 EXPLOITDB text WRITEUP
Joomla! Component com_jnewsletter - SQL Injection
EIP-2026-108408 EXPLOITDB text WRITEUP
Joomla! Component com_joomdocs - Cross-Site Scripting
EIP-2026-108418 EXPLOITDB text WRITEUP
Joomla! Component com_jstore - SQL Injection
EIP-2026-108419 EXPLOITDB text WRITEUP
Joomla! Component com_jsubscription - SQL Injection
EIP-2026-108420 EXPLOITDB text WRITEUP
Joomla! Component com_jtickets - SQL Injection
EIP-2026-108632 EXPLOITDB text WORKING POC
Joomla! Component EasyBlog - Persistent Cross-Site Scripting
EIP-2026-108670 EXPLOITDB text WRITEUP
Joomla! Component healthstats - Persistent Cross-Site Scripting
EIP-2026-108679 EXPLOITDB text WRITEUP
Joomla! Component IXXO Cart - SQL Injection
EIP-2026-108695 EXPLOITDB text WORKING POC
Joomla! Component JE Auto - Local File Inclusion
CVE-2010-2613 EXPLOITDB text WRITEUP
JExtensions JE Awd Song (com_awd_song) - Stored Cross-Site Scripting via Song Review Field
Cross-site scripting (XSS) vulnerability in the JExtensions JE Awd Song (com_awd_song) component for Joomla! allows remote attackers to inject arbitrary web script or HTML via the song review field, which is not properly handled in a view action to index.php.
EIP-2026-108705 EXPLOITDB text WRITEUP
Joomla! Component JE Media Player - Local File Inclusion
EIP-2026-108719 EXPLOITDB text SUSPICIOUS
Joomla! Component jeeventcalendar - Local File Inclusion
CVE-2010-2622 EXPLOITDB text WRITEUP
Joomanager - SQL Injection via catid Parameter
SQL injection vulnerability in the Joomanager component, possibly 1.1.1, for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
EIP-2026-107698 EXPLOITDB text WRITEUP
I-net Multi User Email Script - SQL Injection
EIP-2026-107947 EXPLOITDB text WRITEUP
Iphone Pointter Social Network - Local File Inclusion