Vulnerabilities (CVE)

Filtered by vendor Kanich Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-5044 2 Joomla, Kanich 2 Joomla\!, Com Searchlog 2024-11-21 6.0 MEDIUM N/A
SQL injection vulnerability in models/log.php in the Search Log (com_searchlog) component 3.1.0 for Joomla! allows remote authenticated users, with Public Back-end privileges, to execute arbitrary SQL commands via the search parameter in a log action to administrator/index.php. NOTE: some of these details are obtained from third party information.
CVE-2010-4617 2 Joomla, Kanich 2 Joomla\!, Com Jotloader 2024-11-21 6.8 MEDIUM N/A
Directory traversal vulnerability in the JotLoader (com_jotloader) component 2.2.1 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in the section parameter to index.php.