Filtered by vendor Qproje Subscriptions
Filtered by product Com Qpersonel Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2010-1720 2 Joomla, Qproje 2 Joomla\!, Com Qpersonel 2017-08-17 N/A
SQL injection vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the katid parameter in a qpListele action to index.php.
CVE-2009-4575 2 Joomla, Qproje 2 Joomla\!, Com Qpersonel 2017-08-17 N/A
Cross-site scripting (XSS) vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the personel_sira parameter in a sirala action to index.php.