Joomlacode Joomlaexplorer vulnerabilities
2 known vulnerabilities affecting joomlacode/joomlaexplorer.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-1849P4MEDIUMCVSS 5.0PoC≤ 1.6.22008-04-16
CVE-2008-1849 [MEDIUM] CWE-22 CVE-2008-1849: Directory traversal vulnerability in index.php in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla
Directory traversal vulnerability in index.php in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla! component 1.6.2 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the dir parameter in a show_error action.
nvd
CVE-2008-1848P4MEDIUMCVSS 4.3PoC≤ 1.6.22008-04-16
CVE-2008-1848 [MEDIUM] CWE-79 CVE-2008-1848: Cross-site scripting (XSS) vulnerability in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla! comp
Cross-site scripting (XSS) vulnerability in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla! component 1.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter in a show_error action to index.php.
nvd