Vulnerabilities > Joomla > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-02-16 | CVE-2008-6149 | SQL Injection vulnerability in Joomlaapps COM Mdigg 2.2.8 SQL injection vulnerability in the mDigg (com_mdigg) component 2.2.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cagtegory parameter in a story_lists action to index.php. | 7.5 |
| 2009-02-16 | CVE-2008-6148 | SQL Injection vulnerability in Raven-Worx Liveticker 1.0 SQL injection vulnerability in the Live Ticker (com_liveticker) module 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a viewticker action to index.php. | 7.5 |
| 2009-02-11 | CVE-2008-6116 | SQL Injection vulnerability in Extrosoft COM Thyme 1.0 SQL injection vulnerability in the EXtrovert Software Thyme (com_thyme) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the event parameter to index.php. | 7.5 |
| 2009-02-10 | CVE-2008-6068 | SQL Injection vulnerability in web Design Hero Joomladate 1.2 SQL injection vulnerability in the JoomlaDate (com_joomladate) component 1.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the user parameter in a viewProfile action to index.php. | 7.5 |
| 2009-02-10 | CVE-2009-0494 | SQL Injection vulnerability in Mivaco COM Portfol 1.2 SQL injection vulnerability in the Portfol (com_portfol) 1.2 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the vcatid parameter in a viewcategory action to index.php. | 7.5 |
| 2009-02-06 | CVE-2008-6088 | SQL Injection vulnerability in Joomtracker COM Joomtracker 1.01 SQL injection vulnerability in the Joomtracker (com_joomtracker) 1.01 module for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a tordetails action to index.php. | 7.5 |
| 2009-02-06 | CVE-2008-6076 | SQL Injection vulnerability in Jlleblanc COM Dailymessage 1.0.3 SQL injection vulnerability in the Daily Message (com_dailymessage) 1.0.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. | 7.5 |
| 2009-02-05 | CVE-2009-0421 | SQL Injection vulnerability in Joomla COM Eventing SQL injection vulnerability in the Eventing (com_eventing) 1.6.x component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php. | 7.5 |
| 2009-02-05 | CVE-2009-0420 | SQL Injection vulnerability in Rd-Media Rd-Autos 1.5.5 SQL injection vulnerability in the RD-Autos (com_rdautos) 1.5.5 Stable component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. | 7.5 |
| 2009-02-04 | CVE-2008-6050 | SQL Injection vulnerability in Ircmaxell Tech Article 1.0.1 SQL injection vulnerability in the Tech Articles (com_tech_article) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the item parameter to index.php. | 7.5 |