Joomla!
®
About us
Joomla Home
What is Joomla?
Benefits & Features
Project & Leadership
Trademark & Licensing
Support us
Contribute
Sponsor
Partner
Shop
Download & Extend
Downloads
Extensions
Languages
Get a free site
Discover & Learn
Documentation
Training
Certification
Site Showcase
Announcements
Blogs
Magazine
Community & Support
Community Portal
Events
User Groups
Forum
Resources Directory
Find Hosting
Volunteers Portal
Vulnerable Extensions List
Developer Resources
Developer Network
Security Centre
Issue Tracker
GitHub
API Documentation
Joomla!
Framework
JoomlaCode
Joomla! Extensions Directory™
Download
Launch
Home
Browse Extensions
Top Rated
Most Reviewed
New
Recently Updated
Compatible with J4
Search
Community
Meet the JED Team
Blog
JED Newsletter
Terms of Service
Help Joomla!
Support
Knowledgebase
Sponsor Joomla!
Vulnerable Extensions
About
Vulnerable Extensions
Resolved Extensions
Abandoned Extensions
Submit a Report
Submit an Update
Submit AbandonWare
JSON Feed
Log in
Register
Home
Vulnerable Extensions
Vulnerable Extensions
Vulnerable Extensions
This category lists vulnerable extensions for which no patch is known to exists. You are recommended to uninstall any listed here from your site.
Patched extensions are moved to the Resolved category
.
Filters
Title Filter
Display #
5
10
15
20
25
30
50
100
All
Filter
List of articles in category Vulnerable Extensions
Title
Published Date
Jobprofile 1.0
20 February 2013
JX Finder 2.0.1
20 February 2013
wdbanners
20 February 2013
JB Captify Content J1.5 and J1.7
20 February 2013
JB Microblog
20 February 2013
JB Slideshow <3.5.1,
20 February 2013
JB Bamboobox
20 February 2013
Vik Real Estate 1.0
20 February 2013
Time Returns
20 February 2013
acajoom
20 February 2013
Page 12 of 24
7
8
...
10
11
12
13
14
...
16
VEL Search
Search
Search
Vulnerable Extensions
LivingWord, , XSS (Cross Site Scripting)
Plugin Creative Gallery , , SQL Injection
Proforms Basic via sort_order parameter, , SQL Injection
Virtual Classroom, , SQL Injection
EXTPLORER, 2.1.15, XSS (Cross Site Scripting)
LM-CUSTOM-ADMIN, , Other
admirror gallery, , XSS (Cross Site Scripting)
Proforms Basic Joomla Module, , Other
bagallery , , Other
acymailing, pre 8.7.0 , Other
Resolved Extensions
Solidres, 2.13.3, XSS (Cross Site Scripting)
Edocman 1.24.7 - XSS issue fixed
quickform, , Other
JC Dashboards, 1.3.10, Other
HikaShop, Versions from 4.4.1 to 4.7.2 are affected, SQL Injection
HikaShop Joomla Plugin, , SQL Injection
Visforms Base Package for Joomla!, 3.14.10, SQL Injection
J-BusinessDirectory, 5.7.7 and prior, Other
LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login , 5.0.2, Other
jCart for OpenCart, jCart for OpenCart 3.0.3.19, XSS (Cross Site Scripting)