Vulnerabilities > Virtuemart

DATE	CVE	VULNERABILITY TITLE	RISK
2018-04-26	CVE-2018-7465	Cross-site Scripting vulnerability in Virtuemart An XSS issue was discovered in VirtueMart before 3.2.14. network low complexity virtuemart CWE-79	5.4
2018-02-06	CVE-2015-3619	Cross-site Scripting vulnerability in Virtuemart Cross-site scripting (XSS) vulnerability in assets/js/vm2admin.js in the VirtueMart component before 3.0.8 for Joomla! allows remote attackers to inject arbitrary web script or HTML via vectors involving a "double encode combination of first_name, last_name and company." network low complexity virtuemart CWE-79	5.4
2017-05-29	CVE-2016-10379	SQL Injection vulnerability in Virtuemart 3.0.14 The VirtueMart com_virtuemart component 3.0.14 for Joomla! allows SQL injection by remote authenticated administrators via the virtuemart_paymentmethod_id or virtuemart_shipmentmethod_id parameter to administrator/index.php. network low complexity virtuemart CWE-89	7.2

Vulnerabilities > Virtuemart {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Virtuemart"}]}