Search Results | AttackerKB

Show filters

Topics 5 Users 9,712

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

5 Total Results

Displaying 1-5 of 5

Attacker Value

Unknown

CVE-2023-39970

Disclosure Date: August 17, 2023 (last updated October 08, 2023)

Unrestricted Upload of File with Dangerous Type vulnerability in AcyMailing component for Joomla. It allows remote code execution.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2020-10934

Disclosure Date: March 24, 2020 (last updated February 21, 2025)

Acyba AcyMailing before 6.9.2 mishandles file uploads by admins.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2015-7338

Disclosure Date: March 09, 2020 (last updated February 21, 2025)

SQL Injection exists in AcyMailing Joomla Component before 4.9.5 via exportgeolocorder in a geolocation_longitude request to index.php.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2018-9106

Disclosure Date: March 28, 2018 (last updated November 26, 2024)

CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcySMS extension before 3.5.1 for Joomla! via a value that is mishandled in a CSV export.

0

Attacker Value

Unknown

CVE-2018-9107

Disclosure Date: March 28, 2018 (last updated November 26, 2024)

CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export.

0