Vrs-hCk

56 exploits Active since Oct 2008
CVE-2010-1306 EXPLOITDB text WORKING POC
com_joomlapicasa2 2.0 and 2.0.5 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Picasa (com_joomlapicasa2) component 2.0 and 2.0.5 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
EIP-2026-108842 EXPLOITDB text WORKING POC
Joomla! Component Realtyna Translator 1.0.15 - Local File Inclusion (1)
CVE-2010-1534 EXPLOITDB text WORKING POC
com_shoutbox - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Shoutbox Pro (com_shoutbox) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-1308 EXPLOITDB text WORKING POC
Joomla! com_svmap 1.1.1 - Path Traversal
Directory traversal vulnerability in the SVMap (com_svmap) component 1.1.1 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVE-2009-4628 EXPLOITDB perl WORKING POC
Joomla! com_tpdugg 1.1 - SQL Injection
SQL injection vulnerability in the TemplatePlaza.com TPDugg (com_tpdugg) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a tags action to index.php.
CVE-2010-1659 EXPLOITDB text WORKING POC
com_ultimateportfolio 1.0 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Ultimate Portfolio (com_ultimateportfolio) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-1714 EXPLOITDB text WORKING POC
com_arcadegames 1.0 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Arcade Games (com_arcadegames) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-1979 EXPLOITDB text WORKING POC
Affiliate Datafeeds (com_datafeeds) build 880 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Affiliate Datafeeds (com_datafeeds) component build 880 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-1473 EXPLOITDB text WORKING POC
Joomla! com_advertising 0.25 - Path Traversal
Directory traversal vulnerability in the Advertising (com_advertising) component 0.25 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-1471 EXPLOITDB text WORKING POC
Joomla! com_addressbook <1.5.0 - Path Traversal
Directory traversal vulnerability in the AddressBook (com_addressbook) component 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
EIP-2026-108360 EXPLOITDB text WORKING POC
Joomla! Component com_google - Local File Inclusion
EIP-2026-108275 EXPLOITDB text WORKING POC
Joomla! Component com_bca-rss-syndicator - Local File Inclusion
CVE-2010-1494 EXPLOITDB text WORKING POC
Joomla! com_awdwall 1.5.4 - Path Traversal
Directory traversal vulnerability in the AWDwall (com_awdwall) component 1.5.4 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
EIP-2026-108207 EXPLOITDB text WORKING POC
Joomla! Component Appointment 1.5 - Local File Inclusion
CVE-2010-1656 EXPLOITDB perl WORKING POC
Airiny ABC 1.1.7 - SQL Injection via Sectionid Parameter
SQL injection vulnerability in the Airiny ABC (com_abc) component 1.1.7 for Joomla! allows remote attackers to execute arbitrary SQL commands via the sectionid parameter in an abc action to index.php.
EIP-2026-108554 EXPLOITDB text WORKING POC
Joomla! Component com_spsnewsletter - Local File Inclusion
EIP-2026-108529 EXPLOITDB text WORKING POC
Joomla! Component com_sebercart - 'getPic.php' Local File Disclosure
EIP-2026-108591 EXPLOITDB text WORKING POC
Joomla! Component com_webeecomment 2.0 - Local File Inclusion
EIP-2026-108592 EXPLOITDB text WORKING POC
Joomla! Component com_wgpicasa - Local File Inclusion
EIP-2026-108618 EXPLOITDB text WORKING POC
Joomla! Component CV Maker 1.0 - Local File Inclusion
EIP-2026-108620 EXPLOITDB text WORKING POC
Joomla! Component Delicious Bookmarks 0.0.1 - Local File Inclusion
CVE-2010-1955 EXPLOITDB text WORKING POC
Deluxe Blog Factory (com_blogfactory) 1.1.2 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Deluxe Blog Factory (com_blogfactory) component 1.1.2 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
EIP-2026-108622 EXPLOITDB text WORKING POC
Joomla! Component Digital Diary 1.5.0 - Local File Inclusion
EIP-2026-108650 EXPLOITDB text WORKING POC
Joomla! Component FlashGames 1.5.0 - Local File Inclusion
CVE-2008-6080 EXPLOITDB text WORKING POC
com_ionfiles 4.4.2 - Path Traversal via File Parameter
Directory traversal vulnerability in download.php in the ionFiles (com_ionfiles) 4.4.2 component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.