Vulnerabilities > Anything Digital

DATE CVE VULNERABILITY TITLE RISK
2010-12-06 CVE-2010-4405 Cross-Site Scripting vulnerability in Anything-Digital Sh404Sef
Cross-site scripting (XSS) vulnerability in the Yannick Gaultier sh404SEF component before 2.1.8.777 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
4.3
2010-12-06 CVE-2010-4404 SQL Injection vulnerability in Anything-Digital Sh404Sef
SQL injection vulnerability in the Yannick Gaultier sh404SEF component before 2.1.8.777 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
anything-digital joomla CWE-89
7.5
2009-12-28 CVE-2009-4431 Code Injection vulnerability in Anything-Digital COM Jcalpro 1.5.3.6
PHP remote file inclusion vulnerability in cal_popup.php in the Anything Digital Development JCal Pro (aka com_jcalpro or JCP) component 1.5.3.6 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
network
low complexity
joomla anything-digital CWE-94
7.5