Codebase list cmseek / 52f49a4 deepscans / joom / database / corevul.txt
52f49a4

Tree @52f49a4 (Download .tar.gz)

corevul.txt @52f49a4raw · history · blame 

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
1.0.7|Joomla! 1.0.7 / Mambo 4.5.3 - (feed) Full Path Disclosure / Denial of Service\nEDB : https://www.exploit-db.com/exploits/1698/
1.0.9|Joomla! 1.0.9 - (Weblinks) Blind SQL Injection\nCVE : CVE-2006-7247\nEDB : https://www.exploit-db.com/exploits/1922/
1.5.0|Joomla! 1.5 Beta 2 - 'Search' Remote Code Execution\nEDB : https://www.exploit-db.com/exploits/4212/
1.5.0|Joomla! 1.5 Beta1/Beta2/RC1 - SQL Injection\nCVE : CVE-2007-4781\nEDB : https://www.exploit-db.com/exploits/4350/
1.5.5,1.5.4,1.5.3,1.5.2,1.5.1,1.5.0|Joomla! 1.5.x - (Token) Remote Admin Change Password\nCVE : CVE-2008-3681\nEDB : https://www.exploit-db.com/exploits/6234/
1.5.11,1.5.10,1.5.9,1.5.8,1.5.7,1.5.6,1.5.5,1.5.4,1.5.3,1.5.2,1.5.1|Joomla! 1.5.x - Cross-Site Scripting / Information Disclosure\nCVE: CVE-2011-4909\nEDB : https://www.exploit-db.com/exploits/33061/
1.5.11,1.5.10,1.5.9,1.5.8,1.5.7,1.5.6,1.5.5,1.5.4,1.5.3,1.5.2,1.5.1|Joomla! 1.5.x - 404 Error Page Cross-Site Scripting\nEDB : https://www.exploit-db.com/exploits/33378/
1.5.12|Joomla! 1.5.12 - read/exec Remote files\nEDB : https://www.exploit-db.com/exploits/11263/
1.5.12|Joomla! 1.5.12 - connect back Exploit\nEDB : https://www.exploit-db.com/exploits/11262/
1.6.0|Joomla! 1.6.0-Alpha2 - Cross-Site Scripting\nEDB : https://www.exploit-db.com/exploits/12489/
1.5.12|Joomla! Plugin 'tinybrowser' 1.5.12 - Arbitrary File Upload / Code Execution (Metasploit)\nCVE : CVE-2011-4908\nEDB : https://www.exploit-db.com/exploits/9926/
1.5|Joomla! 1.5 - URL Redirecting\nEDB : https://www.exploit-db.com/exploits/14722/
1.5.21,1.5.20,1.5.19,1.5.18,1.5.17,1.5.16,1.5.15,1.5.14,1.5.13,1.5.12,1.5.11,1.5.10,1.5.9,1.5.8,1.5.7,1.5.6,1.5.5,1.5.4,1.5.3,1.5.2,1.5.1|Joomla! 1.5.x - SQL Error Information Disclosure\nEDB : https://www.exploit-db.com/exploits/34955/ 
1.0.15,1.0.14,1.0.13,1.0.12,1.0.11,1.0.10,1.0.9,1.0.8,1.0.7,1.0.4,1.0.3,1.0.2,1.0.1,1.0.0|Joomla! 1.0.x - 'ordering' Parameter Cross-Site Scripting\nCVE : CVE-2011-0005\nEDB : https://www.exploit-db.com/exploits/35167/
4.5.1|Joomla! Plugin 'Captcha' 4.5.1 - Local File Disclosure\nEDB : https://www.exploit-db.com/exploits/15958/
1.5.22,1.6.0|Joomla! - Spam Mail Relay\nEDB : https://www.exploit-db.com/exploits/15979/
1.6.0|Joomla! 1.6 - Multiple SQL Injections\nCVE : CVE-2011-1151\nEDB : https://www.exploit-db.com/exploits/16992/
1.5.22,1.6.0|Joomla! 1.5/1.6 - JFilterInput Cross-Site Scripting Bypass\nEDB : https://www.exploit-db.com/exploits/16091/
1.6.3|Joomla! 1.6.3 - Multiple Cross-Site Scripting Vulnerabilities\nEDB : https://www.exploit-db.com/exploits/35894/
1.6.3|Joomla! 1.6.3 - Cross-Site Request Forgery\nEDB : https://www.exploit-db.com/exploits/17496/
1.6.3,1.6.2,1.6.1,1.6.4,1.6.0,1.6.5|Joomla! < 1.6.5 - Multiple Cross-Site Scripting Vulnerabilities\nEDB : https://www.exploit-db.com/exploits/35973/
1.6.6,1.6.4,1.6.3,1.6.2,1.6.1,1.6.0,1.5.23,1.5.22,1.5.20,1.5.19,1.5.18,1.5.17,1.5.16,1.5.15,1.5.14,1.5.12,1.5.11,1.5.10,1.5.9,1.5.8,1.5.7,1.5.5,1.5.4,1.5.2,1.5.1,1.7.0,1.6.5,1.6.4,1.6.3,1.6.1,1.6.0,1.5.6,1.5.3,1.5.22,1.5.21,1.5.15,1.5.13,1.5.0|Joomla! < 1.7.0 - Multiple Cross-Site Scripting Vulnerabilities\nEDB : https://www.exploit-db.com/exploits/36176/
2.5.1,2.5.0,1.7.5,1.7.4,1.7.3,1.7.2,1.7.1,1.7.0|Joomla! 'redirect.php' SQL Injection Vulnerability\nEDB : https://www.exploit-db.com/exploits/36913/
2.5.0,2.5.1|Joomla! 2.5.0 < 2.5.1 - Time Based SQL Injection\nEDB : https://www.exploit-db.com/exploits/18618/
2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,3.0.2|Joomla! 'highlight.php' PHP Object Injection\nCVE : CVE-2013-1453\nEDB : https://www.exploit-db.com/exploits/24551/
2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,3.0.2|Joomla! 'remember.php' PHP Object Injection\nCVE : CVE-2013-3242\nEDB : https://www.exploit-db.com/exploits/25087/
3.2.1|Joomla! 3.2.1 - SQL Injection\nEDB : https://www.exploit-db.com/exploits/31459/
3.2,3.3,3.4.0,3.4.1,3.4.4,3.4.3,3.4.4|Joomla! 3.2.x < 3.4.4 - SQL Injection\nEDB : https://www.exploit-db.com/exploits/38534/
2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,1.7.5,1.7.4,1.7.3,1.7.2,1.7.1,1.6.6,1.6.4,1.6.3,1.6.2,1.6.1,1.6.0,1.5.26,1.5.23,1.5.22,1.5.20,1.5.19,1.5.18,1.5.17,1.5.16,1.5.15,1.5.14,1.5.12,1.5.11,1.5.10,1.5.9,1.5.8,1.5.7,1.5.5,1.5.4,1.5.2,1.5.1,1.6.5,1.5.6,1.5.3,1.5.21,1.5.13,1.5.0|Joomla! 1.5 < 3.4.5 - Object Injection Remote Command Execution\nCVE : CVE-2015-8562\nEDB : https://www.exploit-db.com/exploits/38977/
2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,1.7.5,1.7.4,1.7.3,1.7.2,1.7.1,1.6.6,1.6.4,1.6.3,1.6.2,1.6.1,1.6.0,1.5.26,1.5.23,1.5.22,1.5.20,1.5.19,1.5.18,1.5.17,1.5.16,1.5.15,1.5.14,1.5.12,1.5.11,1.5.10,1.5.9,1.5.8,1.5.7,1.5.5,1.5.4,1.5.2,1.5.1,1.6.5,1.5.6,1.5.3,1.5.21,1.5.13,1.5.0,1.0.0,1.1.0,1.2.0,1.3.0|Joomla! 1.0 < 3.4.5 - Object Injection 'x-forwarded-for' Header Remote Code Execution\nCVE : CVE-2015-8562 , CVE-2015-8566 \nEDB : https://www.exploit-db.com/exploits/39033/
3.4.7,3.4.6,3.4.4,3.3.5,3.6.3,3.6.1,3.6.0,3.4.5|Joomla! 3.4.4 < 3.6.4 - Account Creation / Privilege Escalation\nCVE : CVE-2016-8870 , CVE-2016-8869 \nEDB : https://www.exploit-db.com/exploits/40637/
3.4.7,3.4.6,3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.3.0,3.2.6,3.2.5.0,3.2.4,3.2.3,3.2.2,3.2.1,3.1.6,3.1.5,3.1.4,3.1.1,3.1.0,3.0.4,3.0.3,3.0.1,3.0.0,2.5.26,2.5.25,2.5.24,2.5.19,2.5.18,2.5.17,2.5.16,2.5.15,2.5.14,2.5.13,2.5.11,2.5.10,2.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,1.7.5,1.7.4,1.7.3,1.7.2,1.7.1,1.7.0,1.6.6,1.6.4,1.6.3,1.6.2,1.6.1,1.6.0,3.6.4,3.6.3,3.6.1,3.6.0,3.4.5,3.2.0,2.5.0,1.7.0,1.6.5|Joomla! Core Remote Privilege Escalation Vulnerability\nCVE : CVE-2016-9838\nEDB : https://www.exploit-db.com/exploits/41157/
1.6,1.7,2.5.0,2.5.1,2.5.2|Joomla! 1.6/1.7/2.5 privilege escalation vulnerability\nCVE : CVE-2012-1563\nEDB : https://www.exploit-db.com/exploits/41156/
3.2.2|Joomla! v3.2.2 SQL injection\nhttps://developer.joomla.org/security/578-20140301-core-sql-injection.html
2.5.10,2.5.11,2.5.12,2.5.13,2.5.14,2.5.15,2.5.16,2.5.17,2.5.18,2.5.19,2.5.20,2.5.21,2.5.22,2.5.23,2.5.24,2.5.25,2.5.4,2.5.5,2.5.6,2.5.7,2.5.8,2.5.9,3.0.0,3.0.1,3.0.2,3.0.3,3.0.4,3.1.0,3.1.1,3.1.2,3.1.3,3.1.4,3.1.5,3.1.6,3.2.0,3.2.1,3.2.2,3.2.3,3.2.4,3.2.5,3.3.0,3.3.1,3.3.2,3.3.3,3.3.4|Joomla! Component Akeeba Kickstart - Unserialize Remote Code Execution\nCVE : CVE-2014-7228\nEDB : https://www.exploit-db.com/exploits/35033/
2.5.4,2.5.3,2.5.2,2.5.1,2.5.0|Joomla! 'media.php' Arbitrary File Upload Vulnerability\nCVE : CVE-2013-5576\nEDB : https://www.exploit-db.com/exploits/27610/
1.5.0|Joomla! 1.5.0 Beta - 'pcltar.php' Remote File Inclusion\nCVE : CVE-2007-2199\nEDB : https://www.exploit-db.com/exploits/3781/
1.5.8|Joomla! Component xstandard editor 1.5.8 - Local Directory Traversal\nCVE : CVE-2009-0113\nEDB : https://www.exploit-db.com/exploits/7691/
3.4.4|Joomla! 3.4.4 Component Content History - SQL Injection / Remote Code Execution (Metasploit)\nCVE : CVE-2015-7297 , CVE-2015-7857 , CVE-2015-7858 \nEDB : https://www.exploit-db.com/exploits/38797/
2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1|Joomla! Clickjacking Security Bypass Vulnerability\nCVE : CVE-2012-5827\nhttps://developer.joomla.org/security/news/543-20121101-core-clickjacking.html\nhttps://developer.joomla.org/security/news/544-20121102-core-clickjacking.html
3.0.1|Joomla! Unspecified Information Disclosure Vulnerability\nCVE : CVE-2013-1454\nhttp://www.securityfocus.com/bid/57752
3.0.1|Joomla! Unspecified Information Disclosure Vulnerability\nCVE : CVE-2013-1455\nhttp://www.securityfocus.com/bid/57751\nhttps://developer.joomla.org/security-centre/549-20130202-core-information-disclosure.html
3.0.3,3.0.1,3.0.02.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1,2.5.0|Joomla! Highlighter Plugin Unspecified Cross-Site Scripting Vulnerability\nCVE : CVE-2013-3267 \nhttps://developer.joomla.org/security/86-20130407-core-xss-vulnerability.html
2.5.4,2.5.3,2.5.2,2.5.1|Joomla! Security Bypass Vulnerability\nCVE : CVE-2013-3056\nhttp://www.securityfocus.com/bid/59490/info
2.5.4,2.5.3,2.5.2,2.5.1|Joomla! Information Disclosure Vulnerability\nCVE : CVE-2013-3057\nhttp://www.securityfocus.com/bid/59489\nhttp://developer.joomla.org/security/82-20130402-core-information-disclosure.html
3.0.3,3.0.1,3.0.02.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1|Joomla! Unspecified Cross-Site Scripting Vulnerability\nCVE : CVE-2013-3058\nhttp://www.securityfocus.com/bid/59483\nhttp://developer.joomla.org/security/81-20130403-core-xss-vulnerability.html
3.0.3,3.0.1,3.0.02.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1|Joomla! Unspecified Cross-Site Scripting Vulnerability\nCVE : CVE-2013-3059\nhttps://developer.joomla.org/security/80-20130405-core-xss-vulnerability.html
3.3.3,3.3.0,3.2.4,3.2.3,3.2.2,3.2.1,3.2.0|Joomla! Cross Site Scripting Vulnerability\nCVE : Core CVE-2014-6631\nhttps://developer.joomla.org/security/593-20140901-core-xss-vulnerability.html
3.3.3,3.3,3.2.4,3.2.3,3.2.2,3.2.1,3.1.6,3.1.5,3.1.4,3.1.1,3.1.0,3.0.4,3.0.3,3.0.1,2.5.24,2.5.19,2.5.18,2.5.17,2.5.16,2.5.15,2.5.14,2.5.13,2.5.11,2.5.10,2.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,3.2.0|Joomla! Core  Authentication Bypass Vulnerability\nCVE :CVE-2014-6632\nhttp://developer.joomla.org/security/594-20140902-core-unauthorised-logins.html
3.3.4,3.3.3,3.3.0,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.1.6,3.1.5,3.1.4,3.1.1,3.1.0,3.0.4,3.0.3,3.0.1,3.0.0,2.5.25,2.5.24,2.5.19,2.5.18,2.5.17,2.5.16,2.5.15,2.5.14,2.5.13,2.5.11,2.5.10,2.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,3.2.0|Joomla! Core Remote Denial of Service Vulnerability\nCVE : CVE-2014-7229\nhttps://developer.joomla.org/security/596-20140904-core-denial-of-service.html
3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.3.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.1.6,3.1.5,3.1.4,3.1.1,3.1.0,3.0.4,3.0.3,3.0.1,3.0.0,3.2.0|Joomla! Open Redirection Vulnerability\nCVE : CVE-2015-5608\nhttp://www.securityfocus.com/bid/76496
3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.3.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.2.0|Joomla! Cross Site Request Forgery Vulnerability\nCVE : CVE-2015-5397\nhttps://developer.joomla.org/security-centre/618-20150602-core-remote-code-execution.html
3.4.3,3.4.2,3.4.1,3.4.0|Joomla! Core Cross Site Scripting Vulnerability\nCVE : CVE-2015-6939\nhttp://packetstormsecurity.com/files/133907/Joomla-CMS-3.4.3-Cross-Site-Scripting.html\nhttps://developer.joomla.org/security-centre/626-20150908-core-xss-vulnerability.html
3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.3.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.2.0|Joomla! Core Security Bypass Vulnerability\nCVE : CVE-2015-7859\nhttps://developer.joomla.org/security-centre/629-20151002-core-acl-violations.html
3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.3.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.4.5,3.2.0|Joomla! Directory Traversal Vulnerability\nCVE : CVE-2015-8565\nhttps://developer.joomla.org/security-centre/635-20151214-core-directory-traversal-2.html
3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.4.5|Joomla! Directory Traversal Vulnerability\nCVE : CVE-2015-8564\nhttps://developer.joomla.org/security-centre/634-20151214-core-directory-traversal.html
3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.3.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.4.5,3.2.0|Joomla! Core Cross Site Request Forgery Vulnerability\nCVE : CVE-2015-8563\nhttps://developer.joomla.org/security-centre/633-20151214-core-csrf-hardening.html
3.4.7,3.4.6,3.4.4,3.3.5,3.6.3,3.6.1,3.6.0,3.4.5|Joomla! Core Security Bypass Vulnerability\nCVE : CVE-2016-9081\nhttps://developer.joomla.org/security-centre/661-20161003-core-account-modifications.html
3.4.7,3.4.6,3.4.4,3.6.4,3.6.3,3.6.1,3.6.0,3.4.5|Joomla! Core Arbitrary File Upload Vulnerability\nCVE : CVE-2016-9836\nhttps://developer.joomla.org/security-centre/665-20161202-core-shell-upload.html
3.4.7,3.4.6,3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.3.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.1.6,3.1.5,3.1.4,3.1.1,3.1.0,3.0.4,3.0.3,3.0.1,3.0.0,3.6.4,3.6.3,3.6.1,3.6.0,3.4.5,3.2.0|Joomla! Information Disclosure Vulnerability\nCVE : CVE-2016-9837\nhttps://developer.joomla.org/security-centre/666-20161203-core-information-disclosure.html
3.6.5,3.4.7,3.4.6,3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.30.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.1.6,3.1.5,3.1.4,3.1.1,3.10.0,3.0.4,3.0.3,3.0.1,3.0.0,2.5.26,2.5.25,2.5.24,2.5.19,2.5.18,2.5.17,2.5.16,2.5.15,2.5.14,2.5.13,2.5.11,2.5.10,2.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,1.7.5,1.7.4,1.7.3,1.7.2,1.7.1,1.7.0,1.6.6,1.6.4,1.6.3,1.6.2,1.6.1,1.6.0,3.6.4,3.6.3,3.6.1,3.6.0,3.4.5,3.2.0,2.5.0,1.7.0,1.6.5|PHPMailer Remote Code Execution Vulnerability\nCVE : CVE-2016-10033\nhttps://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection\nhttps://github.com/opsxcq/exploit-CVE-2016-10033\nEDB : https://www.exploit-db.com/exploits/40969/
3.6.5,3.4.7,3.4.6,3.4.4,3.4.3,3.4.2,3.4.1,3.4.0,3.3.6,3.3.5,3.3.4,3.3.3,3.3.2,3.3.1,3.30.0,3.2.6,3.2.5,3.2.4,3.2.3,3.2.2,3.2.1,3.1.6,3.1.5,3.1.4,3.1.1,3.10.0,3.0.4,3.0.3,3.0.1,3.0.0,2.5.26,2.5.25,2.5.24,2.5.19,2.5.18,2.5.17,2.5.16,2.5.15,2.5.14,2.5.13,2.5.11,2.5.10,2.5.9,2.5.8,2.5.7,2.5.6,2.5.5,2.5.4,2.5.3,2.5.2,2.5.1,2.5.0,1.7.5,1.7.4,1.7.3,1.7.2,1.7.1,1.7.0,1.6.6,1.6.4,1.6.3,1.6.2,1.6.1,1.6.0,3.6.4,3.6.3,3.6.1,3.6.0,3.4.5,3.2.0,2.5.0,1.7.0,1.6.5|PPHPMailer Incomplete Fix Remote Code Execution Vulnerability\nCVE : CVE-2016-10045\nhttps://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection\nEDB : https://www.exploit-db.com/exploits/40969/