Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2018-5989

Disclosure Date: February 17, 2018 (last updated November 26, 2024)
SQL Injection exists in the ccNewsletter 2.x component for Joomla! via the id parameter in a task=removeSubscriber action, a related issue to CVE-2011-5099.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2011-5099

Disclosure Date: August 14, 2012 (last updated October 04, 2023)
SQL injection vulnerability in helper/popup.php in the ccNewsletter (mod_ccnewsletter) component 1.0.7 through 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.
0
0
Attacker Value
Unknown

CVE-2010-4853

Disclosure Date: October 05, 2011 (last updated October 04, 2023)
SQL injection vulnerability in the ccInvoices (com_ccinvoices) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewInv action to index.php.
0
0
Attacker Value
Unknown

CVE-2010-0467

Disclosure Date: February 02, 2010 (last updated January 27, 2024)
Directory traversal vulnerability in the ccNewsletter (com_ccnewsletter) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in a ccnewsletter action to index.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0