Vendor
JoomlaShack
Products
2
CVEs
2
Across products
2
Status
Private
Products
2- 1 CVE
- 1 CVE
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-20259 | 0.00 | — | — | Jun 19, 2026 | Joomla OSDownloads 1.7.4 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can send GET requests to index.php with option=com_osdownloads&view=item&id=[SQL… | |||
| CVE-2019-17399 | 0.00 | — | 0.02 | Oct 9, 2019 | The Shack Forms Pro extension before 4.0.32 for Joomla! allows path traversal via a file attachment. |
- CVE-2017-20259Jun 19, 2026risk 0.00cvss —epss —
Joomla OSDownloads 1.7.4 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can send GET requests to index.php with option=com_osdownloads&view=item&id=[SQL…
- CVE-2019-17399Oct 9, 2019risk 0.00cvss —epss 0.02
The Shack Forms Pro extension before 4.0.32 for Joomla! allows path traversal via a file attachment.