Vulnerabilities > Fabrikar
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-10-29 | CVE-2018-10727 | Cross-site Scripting vulnerability in Fabrikar Fabrik Reflected Cross-Site Scripting (XSS) vulnerability in the fabrik_referrer hidden field in the Fabrikar Fabrik component through v3.8.1 for Joomla! allows remote attackers to inject arbitrary web script via the HTTP Referer header. | 4.3 |
2011-12-25 | CVE-2011-5004 | Unspecified vulnerability in Fabrikar COM Fabrikar Unrestricted file upload vulnerability in models/importcsv.php in the Fabrik (com_fabrik) component before 2.1.1 for Joomla! allows remote authenticated users with Manager privileges to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory. | 6.0 |
2010-05-19 | CVE-2010-1981 | Path Traversal vulnerability in Fabrikar Fabrik 2.0 Directory traversal vulnerability in the Fabrik (com_fabrik) component 2.0 for Joomla! allows remote attackers to read arbitrary files via a .. | 6.8 |