VYPR
Vendor

Jextensions

Products
7
CVEs
8
Across products
9
Status
Private

Products

7

Recent CVEs

8
  • CVE-2010-5028Nov 2, 2011
    risk 0.04cvss epss 0.09

    SQL injection vulnerability in the JExtensions JE Job (com_jejob) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php.

  • CVE-2010-5022Nov 2, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the JExtensions JE Story Submit (com_jesubmit) component 1.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php.

  • CVE-2010-4862Oct 5, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the JExtensions JE Directory (com_jedirectory) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php.

  • CVE-2010-4517Dec 9, 2010
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component 1.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the char parameter in an item action to index.php.

  • CVE-2010-2680Jul 12, 2010
    risk 0.03cvss epss 0.05

    Directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesectionfinder) component for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the view parameter to index.php.

  • CVE-2012-5230Oct 1, 2012
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in the JE Story Submit (com_jesubmit) component before 1.9 for Joomla! has unknown impact and attack vectors.

  • CVE-2012-5101Sep 23, 2012
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in the JExtensions JE Poll component before 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2010-4720Feb 1, 2011
    risk 0.00cvss epss 0.02

    SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component before 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to the view item page.