Jimtawl
by Joomla
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-6580 | Cri | 0.70 | 9.8 | 0.37 | Feb 2, 2018 | Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5 component for Joomla! via a view=upload&task=upload&pop=true&tmpl=component request. | ||
| CVE-2010-4769 | 0.04 | — | 0.08 | Mar 23, 2011 | Directory traversal vulnerability in the Jimtawl (com_jimtawl) component 1.0.2 Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the task parameter to index.php. | |||
| CVE-2018-17399 | 0.00 | — | 0.02 | Jun 19, 2019 | SQL Injection exists in the Jimtawl 2.2.7 component for Joomla! via the id parameter. |
- risk 0.70cvss 9.8epss 0.37
Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5 component for Joomla! via a view=upload&task=upload&pop=true&tmpl=component request.
- CVE-2010-4769Mar 23, 2011risk 0.04cvss —epss 0.08
Directory traversal vulnerability in the Jimtawl (com_jimtawl) component 1.0.2 Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the task parameter to index.php.
- CVE-2018-17399Jun 19, 2019risk 0.00cvss —epss 0.02
SQL Injection exists in the Jimtawl 2.2.7 component for Joomla! via the id parameter.