Vulnerabilities > Joobi

DATE	CVE	VULNERABILITY TITLE	RISK
2020-03-09	CVE-2015-7342	SQL Injection vulnerability in Joobi Jnews 8.3.1 JNews Joomla Component before 8.5.0 allows SQL injection via upload thumbnail, Queue Search Field, Subscribers Search Field, or Newsletters Search Field. network low complexity joobi CWE-89	7.2
2020-03-09	CVE-2015-7341	Unrestricted Upload of File with Dangerous Type vulnerability in Joobi Jnews 8.3.1 JNews Joomla Component before 8.5.0 allows arbitrary File Upload via Subscribers or Templates, as demonstrated by the .php5 extension. network low complexity joobi CWE-434	8.8
2020-03-09	CVE-2015-7343	Cross-site Scripting vulnerability in Joobi Jnews 8.3.1 JNews Joomla Component before 8.5.0 has XSS via the mailingsearch parameter. network low complexity joobi CWE-79	4.8

Vulnerabilities > Joobi {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Joobi"}]}