Vulnerabilities (CVE)

Filtered by vendor Jdownloads Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-19447	1 Jdownloads	1 Jdownloads	2020-09-29	5.0 MEDIUM	7.5 HIGH
SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter.
CVE-2020-19450	1 Jdownloads	1 Jdownloads	2020-09-28	5.0 MEDIUM	7.5 HIGH
SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter.
CVE-2020-19451	1 Jdownloads	1 Jdownloads	2020-09-28	5.0 MEDIUM	7.5 HIGH
SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter.
CVE-2020-19455	1 Jdownloads	1 Jdownloads	2020-09-28	5.0 MEDIUM	7.5 HIGH
SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter.