Harmistechnology Com Jeajaxeventcalendar vulnerabilities
2 known vulnerabilities affecting harmistechnology/com_jeajaxeventcalendar.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2010-2513P3HIGHCVSS 7.5PoCv1.0.52010-06-28
CVE-2010-2513 [HIGH] CWE-89 CVE-2010-2513: SQL injection vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.5
SQL injection vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php.
nvd
CVE-2010-2129P3MEDIUMCVSS 6.8PoCv1.0.1v1.0.32010-06-01
CVE-2010-2129 [MEDIUM] CWE-22 CVE-2010-2129: Directory traversal vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component
Directory traversal vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.1 and 1.0.3 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. NOTE: some of these details are obtained from third party information.
nvd