Filtered by vendor Harmistechnology
Subscriptions
Filtered by product Je Messenger
Subscriptions
Total
5 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-9918 | 1 Harmistechnology | 1 Je Messenger | 2023-02-28 | 9.1 Critical |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Input does not get validated and queries are not written in a way to prevent SQL injection. Therefore arbitrary SQL-Statements can be executed in the database. | ||||
| CVE-2019-9919 | 1 Harmistechnology | 1 Je Messenger | 2023-02-03 | 5.4 Medium |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to craft messages in a way that JavaScript gets executed on the side of the receiving user when the message is opened, aka XSS. | ||||
| CVE-2019-9920 | 1 Harmistechnology | 1 Je Messenger | 2023-02-03 | 8.8 High |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to perform an action within the context of the account of another user. | ||||
| CVE-2019-9922 | 1 Harmistechnology | 1 Je Messenger | 2023-02-01 | 7.5 High |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Directory Traversal allows read access to arbitrary files. | ||||
| CVE-2019-9921 | 1 Harmistechnology | 1 Je Messenger | 2023-01-31 | 6.5 Medium |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to read information that should only be accessible by a different user. | ||||
Page 1 of 1.