Comunidad Joomla!

Los foros de la Comunidad Joomla!

Obviar

milw0rm.com - Lista de extensiones vulnerables - [06/07/08]

Todo lo que necesitas saber para asegurar tu portal Joomla! 1.0.X

Moderador: Staff Comunidad Joomla!

Tema cerrado

milw0rm.com - Lista de extensiones vulnerables - [06/07/08]

Notapor gustavo el Dom Feb 03, 2008 6:31 pm

---Ultima Actualización Leonel: 26 de Octubre 2008 -----

2008-10-24 Joomla Component Kbase 1.0 Remote SQL Injection Vulnerability
2008-10-24 Joomla Component Archaic Binary Gallery 0.2 Directory Traversal Vuln
2008-10-23 Joomla Component RWCards 3.0.11 Local File Inclusion Vulnerability
2008-10-22 Joomla Component ionFiles 4.4.2 File Disclosure Vulnerability
2008-10-22 Joomla Component Daily Message 1.0.3 (id) SQL Injection Vuln
2008-10-20 Joomla Component ds-syndicate (feed_id) SQL Injection Vulnerability
2008-10-11 Joomla Component ownbiblio 1.5.3 (catid) SQL Injection Vulnerability
2008-10-10 Joomla Component mad4joomla SQL Injection Vulnerability
2008-10-10 Joomla Component Ignite Gallery 0.8.3 SQL Injection Vulnerability
2008-10-09 Joomla Component Joomtracker 1.01 Remote SQL injection Vulnerability
2008-10-07 Joomla Component com_hotspots (w) Remote SQL Injection Vulnerability
2008-09-28 Joomla Component imagebrowser <= 0.1.5 RC2 Directory Traversal Vuln
2008-08-12 Joomla 1.5.x (Token) Remote Admin Change Password Vulnerability
2008-08-03 Joomla Component EZ Store Remote Blind SQL Injection Exploit
2008-07-16 Joomla Component DT Register Remote SQL injection Vulnerability
2008-07-12 Joomla Component n-forms 1.01 Blind SQL Injection Exploit
2008-07-08 Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln
2008-07-04 Joomla Component DBQuery <= 1.4.1.1 RFI Vulnerability
2008-07-04 Joomla Component altas 1.0 Multiple Remote SQL Injection Exploit
2008-07-02 Joomla Component is 1.0.1 Multiple Remote SQL Injection Exploit
2008-07-02 Joomla Component QuickTime VR 0.1 Remote SQL Injection Exploit
2008-07-02 Joomla Component com_brightweblinks (catid) SQL Injection Vulnerability
2008-07-01 Joomla Component mygallery (cid) Remote SQL Injection Vulnerability
2008-07-01 Joomla Component versioning 1.0.2 (id) SQL Injection Vulnerability
2008-06-28 Joomla Component Xe webtv (id) Blind SQL Injection Exploit
2008-06-28 Joomla Component beamospetition Remote SQL Injection Vulnerability
2008-06-28 Joomla Component jabode (id) Remote SQL Injection Vulnerability
2008-06-25 Joomla Component netinvoice 1.2.0 SP1 SQL Injection Vulnerability
2008-06-23 Joomla Component com_facileforms 1.4.4 RFI Vulnerability
2008-06-22 Joomla Component EXP Shop (catid) SQL Injection Vulnerability
2008-06-16 Joomla Simple Shop Galore Component 3.x (catid) SQL Injection
2008-06-09 iJoomla News Portal (Itemid) Remote SQL Injection Exploit
2008-06-08 Joomla Component rapidrecipe Remote SQL injection Vulnerability
2008-06-08 Joomla Component yvcomment <= 1.16 Blind SQL Injection Exploit
2008-06-07 Joomla Component GameQ <= 4.0 Remote SQL injection Vulnerability
2008-06-05 Joomla Component JoomlaDate (user) SQL injection Vulnerability
2008-06-05 Joomla Component simpleshop <= 3.4 SQL injection Vulnerability
2008-06-04 Joomla Component EasyBook 1.1 (gbid) SQL Injection Exploit
2008-06-04 Joomla Component jotloader <= 1.2.1.a Blind SQL injection Exploit
2008-06-03 Joomla Component JooBlog 0.1.1 Blind SQL Injection Exploit
2008-06-03 Joomla Component joomradio 1.0 (id) SQL Injection Vulnerability
2008-06-03 Joomla Component iDoBlog <= b24 Remote SQL Injection Vulnerability
2008-06-02 Joomla Component equotes 0.9.4 Remote SQL injection Vulnerability
2008-06-02 Joomla Component acctexp <= 0.12.x Blind SQL Injection Exploit
2008-06-01 Joomla Component JooBB 0.5.9 Blind SQL Injection Exploit
2008-06-01 Joomla Component com_mycontent 1.1.13 Blind SQL Injection Exploit
2008-05-31 Joomla Component com_biblestudy 1.5.0 (id) SQL Injection Exploit
2008-05-31 Joomla Component prayercenter <= 1.4.9 (id) SQL Injection Vulnerability
2008-05-28 Joomla Component Artist (idgalery) SQL Injection Vulnerability
2008-05-11 Joomla Component xsstream-dm 0.01b Remote SQL Injection Exploit
2008-05-10 Joomla Component com_datsogallery 1.6 Blind SQL Injection Exploit
2008-05-01 Joomla Component Webhosting (catid) Blind SQL Injection Exploit
2008-04-27 Joomla Component paxxgallery 0.2 (gid) Blind SQL Injection Exploit
2008-04-27 Joomla Component com_alphacontent Blind SQL Injection Exploit
2008-04-25 Joomla Component Joomla-Visites 1.1 RC2 RFI Vulnerability
2008-04-24 Joomla Component JPad 1.0 SQL Injection Vulnerability (postauth)
2008-04-23 Joomla Community Builder <= 1.0.1 Blind SQL Injection Vulnerability
2008-04-23 Joomla Component Filiale 1.0.4 (idFiliale) SQL Injection Vulnerability
2008-04-22 Joomla Component FlippingBook 1.0.4 SQL Injection Vulnerability
2008-04-13 Joomla Component com_extplorer <= 2.0.0 RC2 Local Directory Traversal
2008-04-11 Joomla Component joomlaXplorer <= 1.6.2 Remote Vulnerabilities
2008-04-02 Joomla Component OnlineFlashQuiz <= 1.0.2 RFI Vulnerability
2008-04-01 Joomla Component actualite 1.0 (id) SQL Injection Vulnerability
2008-03-28 Joomla Component MyAlbum 1.0 (album) SQL Injection Vulnerability
2008-03-25 Joomla Component alphacontent <= 2.5.8 (id) SQL Injection Vulnerability
2008-03-23 Joomla Component Cinema 1.0 Remote SQL Injection Vulnerability
2008-03-23 Joomla Component d3000 1.0.0 Remote SQL Injection Vulnerability
2008-03-23 Joomla Component rekry 1.0.0 (op_id) SQL Injection Vulnerability
2008-03-22 Joomla Components custompages 1.1 Remote File Inclusion Vulnerability
2008-03-19 Joomla Component Restaurante 1.0 (id) SQL Injection Vulnerability
2008-03-19 Joomla Component Alberghi <= 2.1.3 (id) SQL Injection Vulnerability
2008-03-19 Joomla Component joovideo 1.2.2 (id) SQL Injection Vulnerability
2008-03-18 Joomla Component Acajoom (com_acajoom) SQL Injection Vulnerability
2008-03-11 Joomla Component ProductShowcase <= 1.5 SQL Injection Vulnerability
2008-03-08 Joomla Component Candle 1.0 (cID) SQL Injection Vulnerability
2008-02-23 Joomla Component simple shop 2.0 SQL Injection Vulnerability
2008-02-20 Joomla Component com_hwdvideoshare SQL Injection Vulnerability
2008-02-18 Joomla Component com_clasifier (cat_id) SQL Injection Vulnerability
2008-02-18 Joomla Component com_pccookbook (user_id) SQL Injection Vulnerability
2008-02-18 Joomla Component astatsPRO 1.0 refer.php SQL Injection Vulnerability
2008-02-16 Joomla Component com_galeria Remote SQL Injection Vulnerability
2008-02-16 Joomla Component jooget <= 2.6.8 Remote SQL Injection Vulnerability
2008-02-14 Joomla Component mediaslide (albumnum) Blind SQL Injection Exploit
2008-02-14 Joomla Component Quiz <= 0.81 (tid) SQL Injection Vulnerability
2008-02-14 Joomla Component MCQuiz 0.9 Final (tid) SQL Injection Vulnerability
2008-02-14 Joomla Component paxxgallery 0.2 (iid) SQL Injection Vulnerability
2008-02-13 Joomla Component xfaq 1.2 (aid) Remote SQL Injection Vulnerability
2008-02-12 Joomla Component pcchess <= 0.8 Remote SQL Injection Vulnerability
2008-02-12 Joomla Component rapidrecipe <= 1.6.5 SQL Injection Vulnerability
2008-02-08 Joomla Component NeoGallery 1.1 SQL Injection Vulnerability
2008-02-07 Joomla Component com_noticias 1.0 SQL Injection Vulnerability
2008-02-07 Joomla Component com_doc Remote SQL Injection Vulnerability
2008-02-06 Joomla Component Ynews 1.0.0 (id) Remote SQL Injection Vulnerability
2008-02-03 Joomla Component Marketplace 1.1.1 SQL Injection Vulnerability
2008-02-03 Joomla Component mosDirectory 2.3.2 (catid) SQL Injection Vulnerability
2008-02-01 Joomla Component NeoReferences 1.3.1 (catid) SQL Injection Vulnerability
2008-01-30 Joomla Component ChronoForms 2.3.5 RFI Vulnerabilities

2007-12-31 Joomla Component PU Arcade <= 2.1.3 SQL Injection Vulnerability
2007-12-24 Joomla Component mosDirectory 2.3.2 Remote File Inclusion Vulnerability
2007-12-05 Mambo/Joomla Component rsgallery <= 2.0b5 (catid) SQL Injection Vulnerability
2007-11-19 Joomla Component JUser 1.0.14 Remote File Inclusion Vulnerability
2007-11-16 Joomla Component Carousel Flash Image Gallery RFI Vulnerability
2007-10-12 Joomla Component com_colorlab 1.0 Remote File Inclusion Vulnerability
2007-10-11 Joomla Flash uploader 2.5.1 Remote File Inclusion Vulnerabilities
2007-10-10 - Joomla Component JContentSubscription 1.5.8 - Remote File Inclusion Vulnerability
2007-10-10 - Joomla Component MP3 Allopass 1.0 - Remote File Inclusion Vulnerability
2007-10-08 - Joomla Component MOSMediaLite451 Remote File Inclusion Vulnerability
2007-10-07 - Joomla Component wmtportfolio 1.0 Remote File Inclusion Vulnerability
2007-10-07 - Joomla Flash Image Gallery Component Remote File Inclusion Vulnerability
2007-10-06 - Joomla panoramic component 1.0 Remote File Inclusion Vulnerability
2007-09-21 - Joomla Component com_slideshow Remote File Inclusion Vulnerability
2007-09-16 - Joomla Component joom12Pic 1.0 Remote File Inclusion Vulnerability
2007-09-15 - Joomla Component Flash Fun! 1.0 Remote File Inclusion Vulnerability
2007-09-13 - Joomla Component joomlaradio v5 Remote File Inclusion Vulnerability
2007-09-08 - Joomla Component Restaurante Remote File Upload Vulnerability
2007-09-01 - Joomla! 1.5 Beta1/Beta2/RC1 Remote SQL Injection Exploit
2007-08-23 - Joomla Component BibTeX <= 1.3 Remote Blind SQL Injection Exploit
2007-08-23 - Joomla Component EventList <= 0.8 (did) SQL Injection Vulnerability
2007-08-23 - Joomla Component Nice Talk <= 0.9.3 (tagid) SQL Injection Vulnerability
2007-08-23 - Joomla Component RSfiles <= 1.0.2 (path) File Download Vulnerability
2007-08-23 - Joomla Component NeoRecruit <= 1.4 (id) SQL Injection Vulnerability
2007-07-31 - Joomla Component com_gmaps 1.00 (mapId) Remote SQL Injection
2007-07-22 - Joomla! CMS 1.5 beta 2 (search) Remote Code Execution Vulnerability
2007-07-19 - Joomla Component Pony Gallery <= 1.5 SQL Injection Vulnerability
2007-07-18 - Joomla Component Expose <= RC35 Remote File Upload Vulnerability
2007-05-28 - Joomla Component Phil-a-Form <= 1.2.0.0 SQL Injection Exploit
2007-04-23 - Joomla 1.5.0 Beta (pcltar.php) Remote File Inclusion Vulnerability
2007-04-17 - Joomla Template Be2004-2 (index.php) Remote File Include Exploit
2007-04-17 - Joomla Component JoomlaPack 1.0.4a2 RE (CAltInstaller.php) RFI
2007-04-14 - Mambo/Joomla Component Article 1.1 Remote File Inclusion Vulnerability
2007-04-14 - Joomla Module AutoStand 1.0 Remote File Inclusion Vulnerability
2007-04-11 - Joomla Component mosMedia <= 1.0.8 Remote File Inclusion Vulnerability
2007-04-10 - Joomla/Mambo Component Taskhopper 1.1 RFI Vulnerabilities
2007-03-27 - Joomla Component D4JeZine <= 2.8 Remote BLIND SQL Injection Exploit
2007-03-24 - Joomla Component RWCards <= 2.4.3 Remote SQL Injection Exploit
2007-03-24 - Joomla Component Car Manager <= 1.1 Remote SQL Injection Exploit
2007-03-23 - Joomla Component Joomlaboard 1.1.1 (sbp) RFI Vulnerability
2007-03-23 - Joomla/Mambo Component SWmenuFree 4.0 RFI Vulnerability

2006-11-17 - MosReporter Joomla Component 0.9.3 Remote File Include Exploit
2006-08-19 - Joomla <=1.0.10 (poll component) Arbitrary Add Votes Exploit
2006-08-18 - Joomla Kochsuite Component <= 0.9.4 Remote File Include Vulnerability
2006-08-18 - Joomla Link Directory Component <= 1.0.3 Remote Include Vulnerability
2006-08-18 - Joomla Artlinks Component <= 1.0b4 Remote Include Vulnerability
2006-08-17 - Joomla Mosets Tree <= 1.0 Remote File Include Vulnerability
2006-08-17 - Joomla com_jim Component <= 1.0.1 Remote File Include Vulnerability
2006-08-13 - Joomla Webring Component <= 1.0 Remote Include Vulnerability
2006-08-07 - Joomla JD-Wiki Component <= 1.0.2 Remote Include Vulnerability
2006-07-30 - Joomla LMO Component <= 1.0b2 Remote Include Vulnerability
2006-07-30 - Joomla com_bayesiannaivefilter Component <= 1.1 Inclusion Vulnerability
2006-06-17 - Joomla <= 1.0.9 (Weblinks) Remote Blind SQL Injection Exploit
2006-04-19 - Mambo <= 4.5.3 , Joomla <=1.0.7 (feed) Denial of Service Exploit
Imagen On ne tue point les idées (Las ideas no se matan) | Imagen Perfil profesional Linkedin
Avatar de Usuario
gustavo
Coordinador General
Coordinador General
 
Mensajes: 429
Registrado: Mié Ene 30, 2008 5:30 pm
Ubicación: Bahía Blanca, Argentina
Arriba
Tema cerrado

Volver a Seguridad

¿Quién está conectado?

Usuarios navegando por este Foro: No hay usuarios registrados visitando el Foro y 1 invitado

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Traducción al español por Huan Manwe
Comunidad Joomla! - Joomla en español