VYPR
Vendor

Harmis

Products
2
CVEs
3
Across products
3
Status
Private

Products

2

Recent CVEs

3
  • CVE-2018-12254HigJun 12, 2018
    risk 0.60cvss 8.8epss 0.03

    router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.

  • CVE-2019-9918CriMar 29, 2019
    risk 0.59cvss 9.1epss 0.01

    An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Input does not get validated and queries are not written in a way to prevent SQL injection. Therefore arbitrary SQL-Statements can be executed in the database.

  • CVE-2019-9921MedMar 29, 2019
    risk 0.42cvss 6.5epss 0.01

    An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to read information that should only be accessible by a different user.