 Joomla Vulnerable Extensions List, list with new Joomla exploits |
  |
 Feb 24 2017, 11:18 AM
Post
#1
|
|
 Web Design Seo  Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1  |
Why my Joomla is hacked? Many of these Joomla! extensions have exploits inside, so I wil post here list with all Joomla vulnerable extensions we know. List is not Vulnerable Extensions List from vel.joomla.org, is with more new extensions - I got it from specialized exploits websites. First post in this topic is FULL list - updated with ALL Exploits! So, the list (ordering by date - from October 2016 until now - 23.02.2018): Код Joomla 3.4.4 - 3.6.4 - Account Creation / Privilege Escalation Joomla! Component DT Register - 'cat' SQL Injection Joomla! Component aWeb Cart Watching System for Virtuemart 2.6.0 - SQL Injection Joomla! Component JE Classify Ads 1.2 - 'pro_id' Parameter SQL Injection Joomla! Component JE Gallery 1.3 - 'photo_id' Parameter SQL Injection Joomla! Component JE Directory 1.7 - 'ditemid' Parameter SQL Injection Joomla! Component JE QuoteForm - 'Itemid' Parameter SQL Injection Joomla! Component JE Property Finder 1.6.3 - SQL Injection Joomla! Component JE Tour 2.0 - SQL Injection Joomla! Component JE Video Rate 1.0 - SQL Injection Joomla! Component JE auction 1.6 - 'eid' Parameter SQL Injection Joomla! Component JE Auto 1.5 - 'd_itemid' Parameter SQL Injection Joomla! Component [b]JoomBlog[/b] 1.3.1 - SQL Injection Joomla! Component JSP Store Locator 2.2 - 'id' Parameter SQL Injection Joomla! Component Spider Calendar Lite 3.2.16 - SQL Injection Joomla! Component Spider Catalog Lite 1.8.10 - SQL Injection Joomla! Component Spider Facebook 1.6.1 - SQL Injection Joomla! Component Spider FAQ Lite 1.3.1 - SQL Injection Joomla! Component JEmbedAll 1.4 - SQL Injection Joomla! Component Joomloc-CAT 4.1.3 - 'ville' Parameter SQL Injection Joomla! Component Joomloc-Lite 1.3.2 - 'site_id' Parameter SQL Injection Joomla! Component JomWALL 4.0 - 'wuid' Parameter SQL Injection Joomla! Component OS Property 3.0.8 - SQL Injection Joomla! Component EShop 2.5.1 - 'id' Parameter SQL Injection Joomla! Component OS Services Booking 2.5.1 - SQL Injection Joomla! Component Room Management 1.0 - SQL Injection Joomla! Component MaQma Helpdesk 4.2.7 - 'id' Parameter SQL Injection Joomla! Component [b]PayPal IPN for DOCman[/b] 3.1 - 'id' Parameter SQL Injection Joomla! Component J-HotelPortal 6.0.2 - 'review_id' Parameter SQL Injection Joomla! Component [b]J-CruiseReservation[/b] Standard 3.0 - 'city' Parameter SQL Injection Joomla! Component Eventix Events Calendar 1.0 - SQL Injection Joomla! Component J-MultipleHotelReservation Standard 6.0.2 - 'review_id' Parameter SQL Injection Joomla! Component Directorix Directory Manager 1.1.1 - SQL Injection Joomla! Component Magic Deals Web 1.2.0 - SQL Injection Joomla! Component [b]J-BusinessDirectory[/b] 4.6.8 - SQL Injection Joomla! Component [b]AppointmentBookingPro[/b] 4.0.1 - SQL Injection Joomla! Component ContentMap 1.3.8 - 'contentid' Parameter SQL Injection Joomla! Component VehicleManager 3.9 - SQL Injection Joomla! Component RealEstateManager 3.9 - SQL Injection Joomla! Component BookLibrary 3.6.1 - SQL Injection Joomla! Component MediaLibrary Basic 3.5 - SQL Injection Joomla! Component [b]Store for K2[/b] (K2 Store) 3.8.2 - SQL Injection Joomla! Component UserExtranet 1.3.1 - SQL Injection Joomla! Component MultiTier 3.1 - SQL Injection Joomla! Component JooDatabase 3.1.0 - SQL Injection Joomla! Component JO Facebook Gallery 4.5 - SQL Injection Joomla! Component AJAX Search for K2 2.2 - SQL Injection Joomla! Component Community Surveys 4.3 - SQL Injection Joomla! Component Community Polls 4.5.0 - SQL Injection Joomla! Component GPS Tools 4.0.1 - SQL Injection Joomla! Component Intranet Attendance Track 2.6.5 - SQL Injection Joomla! Component OneVote! 1.0 - SQL Injection Joomla! Component Gnosis 1.1.2 - 'id' Parameter SQL Injection Joomla! Component Coupon 3.5 - SQL Injection Joomla! Component JUX EventOn 1.0.1 - 'id' Parameter SQL Injection Joomla! Component Monthly Archive 3.6.4 - 'author_form' Parameter SQL Injection Joomla! Component AYS Quiz 1.0 - 'id' Parameter SQL Injection Joomla! Component Content ConstructionKit 1.1 - SQL Injection Joomla! Component AltaUserPoints 1.1 - 'userid' Parameter SQL Injection Joomla! Component Simple Membership 3.3.3 - 'userId' Parameter SQL Injection Joomla! Component Advertisement Board 3.0.4 - 'id' Parameter SQL Injection Joomla! Component Vik Appointments 1.5 - SQL Injection Joomla! Component Vik Rent Items 1.3 - SQL Injection Joomla! Component Vik Rent Car 1.11 - SQL Injection Joomla! Component JooCart 2.x - 'product_id' Parameter SQL Injection Joomla! Component jCart for OpenCart 2.0 - 'product_id' Parameter SQL Injection Joomla! Component Modern Booking 1.0 - 'coupon' Parameter SQL Injection Joomla Component Myportfolio 3.0.2 - 'pid' Parameter SQL Injection Joomla! 3.7.0 - 'com_fields' SQL Injection Joomla! Component Payage 2.05 - 'aid' Parameter SQL Injection Joomla! Component CCNewsLetter 2.1.9 - 'sbid' Parameter SQL Injection Joomla! Component Ultimate Property Listing 1.0.2 - SQL Injection Joomla! Component Event Registration Pro Calendar 4.1.3 - SQL Injection Joomla! Component LMS King Professional 3.2.4.0 - SQL Injection Joomla! Component PHP-Bridge 1.2.3 - SQL Injection Joomla! Component SIMGenealogy 2.1.5 - SQL Injection Joomla! Component StreetGuessr Game 1.1.8 - SQL Injection Joomla! Component SP Movie Database 1.3 - SQL Injection Joomla! Component Calendar Planner 1.0.1 - SQL Injection Joomla! Component Zap Calendar Lite 4.3.4 - SQL Injection Joomla! Component KissGallery 1.0.0 - SQL Injection Joomla! Component Twitch Tv 1.1 - SQL Injection Joomla! Component Appointment 1.1 - SQL Injection Joomla! Component Ajax Quiz 1.8 - SQL Injection Joomla! Component FocalPoint 1.2.3 - SQL Injection Joomla! Component Sponsor Wall 8.0 - SQL Injection Joomla! Component Flip Wall 8.0 - 'wallid' Parameter SQL Injection Joomla! Component OSDownloads 1.7.4 - SQL Injection Joomla! Component Photo Contest 1.0.2 - SQL Injection Joomla! Component Responsive Portfolio 1.6.1 - SQL Injection Joomla! Component Bargain Product VM3 1.0 - 'product_id' Parameter SQL Injection Joomla! Component Price Alert 3.0.2 - 'product_id' Parameter SQL Injection Joomla! Component MasterForms 1.0.3 - SQL Injection Joomla! Component Joomanager 2.0.0 - Arbitrary File Download Joomla! Component Quiz Deluxe 3.7.4 - SQL Injection Joomla Component Huge-IT Portfolio Gallery Plugin 1.0.7 - SQL Injection Joomla Component Huge-IT Portfolio Gallery Plugin 1.0.6 - SQL Injection Joomla Component Huge-IT Video Gallery 1.0.9 - SQL Injection Joomla! Component Survey Force Deluxe 3.2.4 - 'invite' Parameter SQL Injection Joomla! Component CheckList 1.1.0 - SQL Injection Joomla! Component Zh YandexMap 6.1.1.0 - 'placemarklistid' SQL Injection Joomla! Component NS Download Shop 2.2.6 - 'id' SQL Injection Joomla! Component JBuildozer 1.4.1 - 'appid' SQL Injection Joomla! Component JEXTN Question And Answer 3.1.0 - SQL Injection Joomla! Component JEXTN Video Gallery 3.0.5 - 'id' SQL Injection Joomla! Component My Projects 2.0 - SQL Injection Joomla! Component User Bench 1.0 - 'userid' SQL Injection Joomla! Component Guru Pro - 'promocode' SQL Injection Joomla! Component JB Visa 1.0 - 'visatype' SQL Injection Joomla! Component NextGen Editor 2.1.0 - 'plname' SQL Injection Joomla! Component JEXTN FAQ Pro 4.0.0 - 'id' SQL Injection Joomla! Component Easydiscuss < 4.0.21 - Cross-Site Scripting Joomla! Component JS Support Ticket 1.1.0 - Cross-Site Request Forgery Joomla! Component Jtag Members Directory 5.3.7 - Arbitrary File Download Joomla! Component Visual Calendar 3.1.3 - 'id' SQL Injection Joomla! Component CP Event Calendar 3.0.1 - 'id' SQL Injection Joomla! Component Picture Calendar for Joomla 3.1.4 - Directory Traversal Joomla! Component JMS Music 1.1.1 - SQL Injection Joomla! Component Jimtawl 2.1.6 - Arbitrary File Upload Joomla! Component JEXTN Classified 1.0.0 - 'sid' SQL Injection Joomla! Component JEXTN Reverse Auction 3.1.0 - SQL Injection Joomla! Component JE PayperVideo 3.0.0 - 'usr_plan' SQL Injection Joomla! Component JEXTN Membership 3.1.0 - 'usr_plan' SQL Injection Joomla! Component JSP Tickets 1.1 - SQL Injection Joomla! Component jLike 1.0 - Information Leak Joomla! Component Zh GoogleMap 8.4.0.0 - SQL Injection Joomla! Component Zh YandexMap 6.2.1.0 - 'id' SQL Injection Joomla! Component Zh BaiduMap 3.0.0.1 - SQL Injection Joomla! Component Saxum Picker 3.2.10 - SQL Injection Joomla! Component SquadManagement 1.0.3 - SQL Injection Joomla! Component Saxum Numerology 3.0.4 - SQL Injection Joomla! Component Saxum Astro 4.0.14 - SQL Injection Joomla Component ccNewsletter 2.x.x 'id' - SQL Injection Joomla! Pinterest Clone Social Pinboard 2.0 - SQL Injection Joomla! Component Timetable Responsive Schedule For Joomla 1.5 - 'alias' SQL Injection Joomla! Component Staff Master 1.0 RC 1 - SQL Injection Joomla! Component Solidres 2.5.1 - SQL Injection Joomla! Component Smart Shoutbox 3.0.0 - SQL Injection Joomla! Component SimpleCalendar 3.1.9 - SQL Injection Joomla! Component Realpin 1.5.04 - SQL Injection Joomla! Component Project Log 1.5.3 - 'search' SQL Injection Joomla! Component NeoRecruit 4.1 - SQL Injection Joomla! Component MediaLibrary Free 4.0.12 - SQL Injection Joomla! Component JTicketing 2.0.16 - SQL Injection Joomla! Component JS Jobs 1.1.9 - SQL Injection Joomla! Component JS Autoz 1.0.9 - SQL Injection Joomla! Component JquickContact 1.3.2.2.1 - SQL Injection Joomla! Component JomEstate PRO 3.7 - 'id' SQL Injection Joomla! Component Proclaim 9.1.1 - Arbitrary File Upload Joomla! Component OS Property Real Estate 3.12.7 - SQL Injection Joomla! Component CheckList 1.1.1 - SQL Injection Joomla! Component Alexandria Book Library 3.1.2 - 'letter' SQL Injection Joomla! Component Ek Rishta 2.9 - SQL Injection Joomla! Component PrayerCenter 3.0.2 - 'sessionid' SQL Injection Joomla! Component Proclaim 9.1.1 - Backup File Download Joomla! Component CW Tags 2.0.6 - SQL Injection Joomla! Component Acymailing Starter 5.9.5 - CSV Macro Injection Joomla! Component EkRishta 2.10 - 'username' SQL Injection Joomla Component Ek rishta 2.10 - SQL Injection Joomla! Component Jomres 9.11.2 - Cross-Site Request Forgery (Add User) Joomla Component JCK Editor 6.4.4 - 'parent' SQL Injection If you use ANY of these versions, I recommend you to check for a update or to uninstall it immediately because all your Joomla site will be at risk being hacked! Where can I get more info about every exploit? Search for every title in https://www.exploit-db.com/ Please, DO not copy full list! We have copy protection global in our site - if you copy from our forum text over 120 symbols, text will be damaged. Cheers  This post has been edited by Web Design Seo: Sep 19 2018, 09:26 AM
Reason for edit: FULL list updated
Attached File(s)
-------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
 |
 
|
|
Feb 27 2017, 08:29 AM
Post
#2
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
New exploits from the last weekend (friday to monday):
Код Joomla! Component JooDatabase 3.1.0 - SQL Injection
Joomla! Component JO Facebook Gallery 4.5 - SQL Injection Joomla! Component AJAX Search for K2 2.2 - SQL Injection Joomla! Component Community Surveys 4.3 - SQL Injection Joomla! Component Community Polls 4.5.0 - SQL Injection Joomla! Component GPS Tools 4.0.1 - SQL Injection Joomla! Component Intranet Attendance Track 2.6.5 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Feb 28 2017, 06:36 AM
Post
#3
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
New from today:
Код Joomla! Component OneVote! 1.0 - SQL Injection
Joomla! Component Gnosis 1.1.2 - 'id' Parameter SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Mar 6 2017, 07:55 AM
Post
#4
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
New from last weekend:
Код Joomla! Component Coupon 3.5 - SQL Injection
Joomla! Component JUX EventOn 1.0.1 - 'id' Parameter SQL Injection Joomla! Component Monthly Archive 3.6.4 - 'author_form' Parameter SQL Injection Joomla! Component AYS Quiz 1.0 - 'id' Parameter SQL Injection Joomla! Component Content ConstructionKit 1.1 - SQL Injection Joomla! Component AltaUserPoints 1.1 - 'userid' Parameter SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Mar 15 2017, 06:42 AM
Post
#5
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
From today:
Код Joomla! Component Simple Membership 3.3.3 - 'userId' Parameter SQL Injection
Joomla! Component Advertisement Board 3.0.4 - 'id' Parameter SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Mar 16 2017, 07:13 AM
Post
#6
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
And again new exploits:
Код Joomla! Component Vik Appointments 1.5 - SQL Injection
Joomla! Component Vik Rent Items 1.3 - SQL Injection Joomla! Component Vik Rent Car 1.11 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Mar 21 2017, 06:50 AM
Post
#7
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component JooCart 2.x - 'product_id' Parameter SQL Injection
Joomla! Component jCart for OpenCart 2.0 - 'product_id' Parameter SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Aug 1 2017, 06:49 AM
Post
#8
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component CCNewsLetter 2.1.9 - 'sbid' Parameter SQL Injection
-------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Aug 3 2017, 06:18 AM
Post
#9
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component Ultimate Property Listing 1.0.2 - SQL Injection
Joomla! Component Event Registration Pro Calendar 4.1.3 - SQL Injection Joomla! Component LMS King Professional 3.2.4.0 - SQL Injection Joomla! Component PHP-Bridge 1.2.3 - SQL Injection Joomla! Component SIMGenealogy 2.1.5 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Aug 19 2017, 08:48 AM
Post
#10
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component StreetGuessr Game 1.1.8 - SQL Injection
Joomla! Component SP Movie Database 1.3 - SQL Injection Joomla! Component Calendar Planner 1.0.1 - SQL Injection Joomla! Component Zap Calendar Lite 4.3.4 - SQL Injection Joomla! Component KissGallery 1.0.0 - SQL Injection Joomla! Component Twitch Tv 1.1 - SQL Injection Joomla! Component Appointment 1.1 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Aug 22 2017, 01:06 PM
Post
#11
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component Ajax Quiz 1.8 - SQL Injection
Joomla! Component FocalPoint 1.2.3 - SQL Injection Joomla! Component Sponsor Wall 8.0 - SQL Injection Joomla! Component Flip Wall 8.0 - 'wallid' Parameter SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Aug 30 2017, 01:23 PM
Post
#12
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component OSDownloads 1.7.4 - SQL Injection
Joomla! Component Photo Contest 1.0.2 - SQL Injection Joomla! Component Responsive Portfolio 1.6.1 - SQL Injection Joomla! Component Bargain Product VM3 1.0 - 'product_id' Parameter SQL Injection Joomla! Component Price Alert 3.0.2 - 'product_id' Parameter SQL Injection Joomla! Component MasterForms 1.0.3 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Sep 1 2017, 11:46 AM
Post
#13
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component Joomanager 2.0.0 - Arbitrary File Download
Joomla! Component Quiz Deluxe 3.7.4 - SQL Injection Joomla Component Huge-IT Portfolio Gallery Plugin 1.0.7 - SQL Injection Joomla Component Huge-IT Portfolio Gallery Plugin 1.0.6 - SQL Injection Joomla Component Huge-IT Video Gallery 1.0.9 - SQL Injection Joomla! Component Survey Force Deluxe 3.2.4 - 'invite' Parameter SQL Injection Joomla! Component CheckList 1.1.0 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Oct 31 2017, 06:04 AM
Post
#14
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component Zh YandexMap 6.1.1.0 - 'placemarklistid' SQL Injection
Joomla! Component NS Download Shop 2.2.6 - 'id' SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Dec 21 2017, 07:06 AM
Post
#15
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component JEXTN Question And Answer 3.1.0 - SQL Injection
Joomla! Component JEXTN Video Gallery 3.0.5 - 'id' SQL Injection Joomla! Component My Projects 2.0 - SQL Injection Joomla! Component User Bench 1.0 - 'userid' SQL Injection Joomla! Component Guru Pro - 'promocode' SQL Injection Joomla! Component JB Visa 1.0 - 'visatype' SQL Injection Joomla! Component NextGen Editor 2.1.0 - 'plname' SQL Injection Joomla! Component JEXTN FAQ Pro 4.0.0 - 'id' SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Jan 31 2018, 07:04 AM
Post
#16
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component Visual Calendar 3.1.3 - 'id' SQL Injection
Joomla! Component CP Event Calendar 3.0.1 - 'id' SQL Injection Joomla! Component Picture Calendar for Joomla 3.1.4 - Directory Traversal -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Feb 6 2018, 10:52 AM
Post
#17
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component JMS Music 1.1.1 - SQL Injection
Joomla! Component Jimtawl 2.1.6 - Arbitrary File Upload Joomla! Component JEXTN Classified 1.0.0 - 'sid' SQL Injection Joomla! Component JEXTN Reverse Auction 3.1.0 - SQL Injection Joomla! Component JE PayperVideo 3.0.0 - 'usr_plan' SQL Injection Joomla! Component JEXTN Membership 3.1.0 - 'usr_plan' SQL Injection Joomla! Component JSP Tickets 1.1 - SQL Injection Joomla! Component jLike 1.0 - Information Leak Joomla! Component Zh GoogleMap 8.4.0.0 - SQL Injection Joomla! Component Zh YandexMap 6.2.1.0 - 'id' SQL Injection Joomla! Component Zh BaiduMap 3.0.0.1 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Feb 19 2018, 07:48 AM
Post
#18
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component Saxum Picker 3.2.10 - SQL Injection
Joomla! Component SquadManagement 1.0.3 - SQL Injection Joomla! Component Saxum Numerology 3.0.4 - SQL Injection Joomla! Component Saxum Astro 4.0.14 - SQL Injection Joomla Component ccNewsletter 2.x.x 'id' - SQL Injection Joomla! Pinterest Clone Social Pinboard 2.0 - SQL Injection Joomla! Component Timetable Responsive Schedule For Joomla 1.5 - 'alias' SQL Injection Joomla! Component Staff Master 1.0 RC 1 - SQL Injection Joomla! Component Solidres 2.5.1 - SQL Injection Joomla! Component Smart Shoutbox 3.0.0 - SQL Injection Joomla! Component SimpleCalendar 3.1.9 - SQL Injection Joomla! Component Realpin 1.5.04 - SQL Injection Joomla! Component Project Log 1.5.3 - 'search' SQL Injection Joomla! Component NeoRecruit 4.1 - SQL Injection Joomla! Component MediaLibrary Free 4.0.12 - SQL Injection Joomla! Component JTicketing 2.0.16 - SQL Injection Joomla! Component JS Jobs 1.1.9 - SQL Injection Joomla! Component JS Autoz 1.0.9 - SQL Injection Joomla! Component JquickContact 1.3.2.2.1 - SQL Injection Joomla! Component JomEstate PRO 3.7 - 'id' SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Feb 23 2018, 07:31 AM
Post
#19
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Код Joomla! Component Proclaim 9.1.1 - Arbitrary File Upload
Joomla! Component OS Property Real Estate 3.12.7 - SQL Injection Joomla! Component CheckList 1.1.1 - SQL Injection Joomla! Component Alexandria Book Library 3.1.2 - 'letter' SQL Injection Joomla! Component Ek Rishta 2.9 - SQL Injection Joomla! Component PrayerCenter 3.0.2 - 'sessionid' SQL Injection Joomla! Component Proclaim 9.1.1 - Backup File Download Joomla! Component CW Tags 2.0.6 - SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
Jun 20 2018, 06:12 AM
Post
#20
|
|
|
Web Design Seo Group: Root Admin Posts: 4,027 Joined: 29-April 09 From: Sofia Member No.: 1 |
Now first post in this topic is updated with FULL exploits list.
Код Joomla! Component AcySMS 3.5.0 - CSV Macro Injection
Joomla! Component Acymailing Starter 5.9.5 - CSV Macro Injection Joomla! Component EkRishta 2.10 - 'username' SQL Injection Joomla Component Ek rishta 2.10 - SQL Injection Joomla! Component Jomres 9.11.2 - Cross-Site Request Forgery (Add User) Joomla Component JCK Editor 6.4.4 - 'parent' SQL Injection -------------------- Правила на форума | Forum Rules | How to receive support. 3D Web Design: Уеб дизайн, Seo оптимизация, Web Site Extensions, Oscommerce Addons, Wordpress plugins and Joomla Extensions. Изработка на уеб сайтове и оптимизация на сайт за търсачки и Seo услуги.
|
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
Similar Topics
| Topic | Replies | Topic Starter | Views | Last Action | |
|---|---|---|---|---|---|
 |
Pinned:  Joomla Scraper, Grabber For JoomlaJoomla Scraper Can Grab Any Content From Any Website |
81 | Web Design Seo | 71,944 | 14th September 2018 - 08:35 AM Last post by: Web Design Seo |
|
Pinned: Joomla Pagination Seo Plugin SEO plugin for Joomla Pagination that work in all Joomla |
61 | Web Design Seo | 47,296 | 13th March 2018 - 10:05 AM Last post by: mxcpz |
 |
Pinned: Joomla Scraper Going Open Source No licenses, use scraper on unlimited number of web sites |
0 | Web Design Seo | 2,521 | 8th March 2017 - 07:40 AM Last post by: Web Design Seo |
|
Pinned: Joomla Ден 2016 Joomla Day 2016 |
1 | Web Design Seo | 10,839 | 31st October 2016 - 10:11 AM Last post by: Web Design Seo |
|
Joomla Post By Email To K2 Extra Fields | 1 | uglykidjoe | 8,951 | 11th February 2016 - 07:45 AM Last post by: Web Design Seo |
|
Pinned: Joomla Scraper Integration With K2 better integration of Joomla Scraper and K2 |
8 | Web Design Seo | 21,059 | 2nd January 2016 - 09:07 AM Last post by: b_goranov |
|
Joomla Scraper Not Working | 2 | Jan Hädicke | 4,282 | 11th November 2015 - 02:05 PM Last post by: Web Design Seo |
|
Joomla Scrapper Subscription And Licensing Model | 3 | omoj | 5,907 | 15th October 2014 - 06:06 AM Last post by: Web Design Seo |
|
Joomla Developer For Hire Hire Joomla! developers |
0 | Web Design Seo | 6,715 | 25th July 2014 - 08:00 AM Last post by: Web Design Seo |
|
Pinned: Joomla Web Development From Joomla Developer web development of joomla extensions from experienced developers |
0 | Web Design Seo | 6,691 | 14th May 2014 - 01:07 PM Last post by: Web Design Seo |
|
Lo-Fi Version | Time is now: 24th September 2018 - 09:19 PM |
