Exploitdb Exploits

CVE-2017-16356 EXPLOITDB MEDIUM text

Kubik-Rubik SIGE <3.3.0 - XSS

Reflected XSS in Kubik-Rubik SIGE (aka Simple Image Gallery Extended) before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/plugin_sige/print.php link with a crafted img, name, or caption parameter.

by Alwin Peppels

CVSS 6.1

View

CVE-2018-6585 EXPLOITDB CRITICAL text VERIFIED

Techjoomla Jticketing - SQL Injection

SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filter_creator or filter_events_cat parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5994 EXPLOITDB CRITICAL text

JS Jobs 1.1.9 - SQL Injection

SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6006 EXPLOITDB CRITICAL text

JS Autoz 1.0.9 - SQL Injection

SQL Injection exists in the JS Autoz 1.0.9 component for Joomla! via the vtype, pre, or prs parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5983 EXPLOITDB CRITICAL text VERIFIED

Joomla! - SQL Injection

SQL Injection exists in the JquickContact 1.3.2.2.1 component for Joomla! via a task=refresh&sid= request.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6368 EXPLOITDB CRITICAL text VERIFIED

Comdev Jomestate Pro < 3.7 - SQL Injection

SQL Injection exists in the JomEstate PRO through 3.7 component for Joomla! via the id parameter in a task=detailed action.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5970 EXPLOITDB CRITICAL text VERIFIED

JGive 2.0.9 - SQL Injection

SQL Injection exists in the JGive 2.0.9 component for Joomla! via the filter_org_ind_type or campaign_countries parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6372 EXPLOITDB CRITICAL text VERIFIED

Joombooking JB Bus - SQL Injection

SQL Injection exists in the JB Bus 2.3 component for Joomla! via the order_number parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6394 EXPLOITDB CRITICAL text VERIFIED

Techjoomla Invitex - SQL Injection

SQL Injection exists in the InviteX 3.0.5 component for Joomla! via the invite_type parameter in a view=invites action.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6396 EXPLOITDB CRITICAL text VERIFIED

Google Map Landkarten < 4.2.3 - SQL Injection

SQL Injection exists in the Google Map Landkarten through 4.2.3 component for Joomla! via the cid or id parameter in a layout=form_markers action, or the map parameter in a layout=default action.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5981 EXPLOITDB CRITICAL text VERIFIED

Gallery WD 1.3.6 - SQL Injection

SQL Injection exists in the Gallery WD 1.3.6 component for Joomla! via the tag_id parameter or gallery_id parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5991 EXPLOITDB CRITICAL text VERIFIED

Joomla! Form Maker 3.6.12 - SQL Injection

SQL Injection exists in the Form Maker 3.6.12 component for Joomla! via the id, from, or to parameter in a view=stats request, a different vulnerability than CVE-2015-2798.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6004 EXPLOITDB CRITICAL text

Joomla! File Download Tracker 3.0 - SQL Injection

SQL Injection exists in the File Download Tracker 3.0 component for Joomla! via the dynfield[phone] or sess parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6373 EXPLOITDB CRITICAL text VERIFIED

Fastball - SQL Injection

SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view=player action.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-6584 EXPLOITDB CRITICAL text VERIFIED

Dthdevelopment DT Register - SQL Injection

SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5989 EXPLOITDB CRITICAL text VERIFIED

ccNewsletter 2.x - Joomla! - SQL Injection

SQL Injection exists in the ccNewsletter 2.x component for Joomla! via the id parameter in a task=removeSubscriber action, a related issue to CVE-2011-5099.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5990 EXPLOITDB CRITICAL text VERIFIED

AllVideos Reloaded <1.2.x - SQL Injection

SQL Injection exists in the AllVideos Reloaded 1.2.x component for Joomla! via the divid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5993 EXPLOITDB CRITICAL text VERIFIED

Joomla! - SQL Injection

SQL Injection exists in the Aist through 2.0 component for Joomla! via the id parameter in a view=showvacancy request.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-5982 EXPLOITDB CRITICAL text VERIFIED

Advertisement Board 3.1.0 - Joomla! - SQL Injection

SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request.

by Ihsan Sencan

CVSS 9.8

View

CVE-2018-7176 EXPLOITDB HIGH html

Frontaccounting - CSRF

FrontAccounting 2.4.3 suffers from a CSRF flaw, which leads to adding a user account via admin/users.php (aka the "add user" feature of the User Permissions page).

by Samrat Das

CVSS 8.8

View

CVE-2017-10046 EXPLOITDB MEDIUM text VERIFIED

Oracle Primavera P6 <16.1 - Info Disclosure

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle Primavera Products Suite (subcomponent: Web Access). Supported versions that are affected are 8.3, 8.4, 15.1, 15.2 and 16.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Primavera P6 Enterprise Project Portfolio Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Primavera P6 Enterprise Project Portfolio Management, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Primavera P6 Enterprise Project Portfolio Management accessible data as well as unauthorized read access to a subset of Primavera P6 Enterprise Project Portfolio Management accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N).

by Marios Nicolaides

CVSS 5.4

View

CVE-2018-1041 EXPLOITDB HIGH text

Jboss-remoting - Infinite Loop

A vulnerability was found in the way RemoteMessageChannel, introduced in jboss-remoting versions 3.3.10, reads from an empty buffer. An attacker could use this flaw to cause denial of service via high CPU caused by an infinite loop.

by Frank Spierings

CVSS 7.5

View

CVE-2015-3315 EXPLOITDB HIGH ruby VERIFIED

ABRT raceabrt Privilege Escalation

Automatic Bug Reporting Tool (ABRT) allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink attack on (1) /var/tmp/abrt/*/maps, (2) /tmp/jvm-*/hs_error.log, (3) /proc/*/exe, (4) /etc/os-release in a chroot, or (5) an unspecified root directory related to librpm.

by Metasploit

CVSS 7.8

View

CVE-2015-5374 EXPLOITDB python

Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module - Denial of Service

A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02. Specially crafted packets sent to port 50000/UDP could cause a denial-of-service of the affected device. A manual reboot may be required to recover the service of the device.

by M. Can Kurnaz

View

CVE-2016-6272 EXPLOITDB HIGH text VERIFIED

Epic MyChart - XPath Injection

XPath injection vulnerability in Epic MyChart allows remote attackers to access contents of an XML document containing static display strings, such as field labels, via the topic parameter to help.asp. NOTE: this was originally reported as a SQL injection vulnerability, but this may be inaccurate.

by Shayan S

CVSS 7.5

View