RSS   Vulnerabilities for 'Com qpersonel'   RSS

2010-05-04
 
CVE-2010-1720

CWE-89
 

 
SQL injection vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the katid parameter in a qpListele action to index.php.

 
2010-01-06
 
CVE-2009-4575

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the personel_sira parameter in a sirala action to index.php.

 

 >>> Vendor: Qproje 2 Products
Com siirler
Com qpersonel


Copyright 2019, cxsecurity.com

 

Back to Top