Alphaplug Com Alphauserpoints vulnerabilities
2 known vulnerabilities affecting alphaplug/com_alphauserpoints.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2010-1476P3MEDIUMCVSS 6.8PoCv1.5.52010-04-19
CVE-2010-1476 [MEDIUM] CWE-22 CVE-2010-1476: Directory traversal vulnerability in the AlphaUserPoints (com_alphauserpoints) component 1.5.5 for J
Directory traversal vulnerability in the AlphaUserPoints (com_alphauserpoints) component 1.5.5 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the view parameter to index.php.
nvd
CVE-2009-3342P3HIGHCVSS 7.5PoCv1.5.22009-09-24
CVE-2009-3342 [HIGH] CWE-89 CVE-2009-3342: SQL injection vulnerability in frontend/assets/ajax/checkusername.php in the AlphaUserPoints (com_al
SQL injection vulnerability in frontend/assets/ajax/checkusername.php in the AlphaUserPoints (com_alphauserpoints) component 1.5.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the username2points parameter.
nvd