High

DATE	CVE	VULNERABILITY TITLE	RISK
2011-10-09	CVE-2010-4929	SQL Injection vulnerability in Joostina-Cms COM Ezautos SQL injection vulnerability in the Joostina (com_ezautos) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the firstCode parameter in a helpers action to index.php. network low complexity joostina-cms joomla CWE-89	7.5
2011-10-09	CVE-2010-4927	SQL Injection vulnerability in Photoindochina COM Restaurantguide 1.0.0 SQL injection vulnerability in the Restaurant Guide (com_restaurantguide) component 1.0.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a country action to index.php. network low complexity photoindochina joomla CWE-89	7.5
2011-10-09	CVE-2010-4926	SQL Injection vulnerability in Timetrack COM Timetrack 1.2.4 SQL injection vulnerability in the TimeTrack (com_timetrack) component 1.2.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the ct_id parameter in a timetrack action to index.php. network low complexity timetrack joomla CWE-89	7.5
2011-10-08	CVE-2010-4918	Code Injection vulnerability in Ijoomla COM Magazine 3.0.1 PHP remote file inclusion vulnerability in iJoomla Magazine (com_magazine) component 3.0.1 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the config parameter to magazine.functions.php. network low complexity ijoomla joomla CWE-94	7.5
2011-10-08	CVE-2010-4904	SQL Injection vulnerability in Simon Philips COM Aardvertiser 2.1/2.1.1 SQL injection vulnerability in the Aardvertiser (com_aardvertiser) component 2.1 and 2.1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat_name parameter in a view action to index.php. network low complexity simon-philips joomla CWE-89	7.5
2011-10-08	CVE-2010-4902	SQL Injection vulnerability in Joomla-Clantools Clantools Comclantools Multiple SQL injection vulnerabilities in the Clantools (com_clantools) component 1.2.3 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) squad or (2) showgame parameter to index.php. network low complexity joomla-clantools joomla CWE-89	7.5
2011-10-08	CVE-2010-4898	SQL Injection vulnerability in Gantry-Framework COM Gantry 3.0.10 SQL injection vulnerability in the Gantry (com_gantry) component 3.0.10 for Joomla! allows remote attackers to execute arbitrary SQL commands via the moduleid parameter to index.php. network low complexity gantry-framework joomla CWE-89	7.5
2011-10-05	CVE-2010-4865	SQL Injection vulnerability in Harmistechnology COM Jeguestbook 1.0 SQL injection vulnerability in the JE Guestbook (com_jeguestbook) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the d_itemid parameter in an item_detail action to index.php. network low complexity harmistechnology joomla CWE-89	7.5
2011-10-05	CVE-2010-4864	SQL Injection vulnerability in Danieljamesscott COM Clubmanager SQL injection vulnerability in the Club Manager (com_clubmanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cm_id parameter in an equip presenta action to index.php. network low complexity danieljamesscott joomla CWE-89	7.5
2011-10-05	CVE-2010-4862	SQL Injection vulnerability in Harmistechnology COM Jedirectory 1.0 SQL injection vulnerability in the JExtensions JE Directory (com_jedirectory) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php. network low complexity harmistechnology joomla CWE-89	7.5