Search Results | AttackerKB

Show filters

Topics 390 Users 9,716

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

390 Total Results

Displaying 181-190 of 390

Attacker Value

Unknown

CVE-2017-9933

Disclosure Date: July 17, 2017 (last updated November 26, 2024)

Improper cache invalidation in Joomla! CMS 1.7.3 through 3.7.2 leads to disclosure of form contents.

0

Attacker Value

Unknown

CVE-2017-8917

Disclosure Date: May 17, 2017 (last updated November 26, 2024)

SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspecified vectors.

0

Attacker Value

Unknown

CVE-2017-7985

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of multibyte characters leads to XSS vulnerabilities in various components.

0

Attacker Value

Unknown

CVE-2017-7987

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate escaping of file and folder names leads to XSS vulnerabilities in the template manager component.

0

Attacker Value

Unknown

CVE-2017-7989

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden.

0

Attacker Value

Unknown

CVE-2017-7988

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 1.6.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of form contents allows overwriting the author of an article.

0

Attacker Value

Unknown

CVE-2017-7983

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), mail sent using the JMail API leaked the used PHPMailer version in the mail headers.

0

Attacker Value

Unknown

CVE-2017-7986

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of specific HTML attributes leads to XSS vulnerabilities in various components.

0

Attacker Value

Unknown

CVE-2017-8057

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 3.4.0 through 3.6.5 (fixed in 3.7.0), multiple files caused full path disclosures on systems with enabled error reporting.

0

Attacker Value

Unknown

CVE-2017-7984

Disclosure Date: April 25, 2017 (last updated November 26, 2024)

In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering leads to XSS in the template manager component.

0