CVE-2010-2513

Harmistechnology Com Jeajaxeventcalendar - SQL Injection

Title source: rule
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2010-2513. PoCs published by L0rd CrusAd3r.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in Joomla JE Ajax Event Calendar version 1.0.5. It includes a demo URL showing the vulnerable parameter but lacks functional exploit code.

Description

SQL injection vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php.

Exploits (2)

exploitdb WRITEUP
by L0rd CrusAd3r · textwebappsphp
https://www.exploit-db.com/exploits/13997

The provided text describes a SQL injection vulnerability in Joomla JE Ajax Event Calendar version 1.0.5. It includes a demo URL showing the vulnerable parameter but lacks functional exploit code.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Joomla JE Ajax Event Calendar 1.0.5
No auth needed
Prerequisites: Access to the vulnerable Joomla component
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC
webappsphp
https://www.exploit-db.com/exploits/15610

This is a functional SQL injection exploit for the JE Ajax Event Calendar Joomla component. It leverages a vulnerable parameter to extract user credentials from the database via a UNION-based SQLi attack.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: JE Ajax Event Calendar (Joomla component)
No auth needed
Prerequisites: Target must have the vulnerable JE Ajax Event Calendar component installed · Database must contain the 'jos_users' table with 'username' and 'password' columns
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/41058
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/13997

Scores

EPSS 0.0097
EPSS Percentile 57.5%

Details

CWE
CWE-89
Status published
Products (1)
harmistechnology/com_jeajaxeventcalendar 1.0.5
Published Jun 28, 2010
Tracked Since Feb 18, 2026