Vulnerabilities (CVE)

Filtered by vendor Miwisoft Subscribe
Filtered by product Mijosearch
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-6879 1 Miwisoft 1 Mijosearch 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
The Mijosoft MijoSearch component 2.0.1 and earlier for Joomla! allows remote attackers to obtain sensitive information via a request to component/mijosearch/search, which reveals the installation path in an error message.
CVE-2013-6878 1 Miwisoft 1 Mijosearch 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in the Mijosoft MijoSearch component 2.0.4 and earlier for Joomla! allows remote attackers to inject arbitrary web script or HTML via the query parameter to component/mijosearch/search.