← Back

Ordasoft

ordasoft

9 CVEs • 6 products

Products (6)

Click to collapse
Toggle
Com Booklibrary
com_booklibrary
4 CVEs
Com Vehiclemanager
com_vehiclemanager
1 CVE
Com Medialibrary
com_medialibrary
1 CVE
Com Realestatemanager
com_realestatemanager
1 CVE
Medialibrary
medialibrary
1 CVE
Advertisement Board
advertisement_board
1 CVE

CVEs (9)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-5982
1Ordasoft
1Advertisement Board
Nov 21, 2024
Feb 17, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request.
CVE-2018-5971
1Ordasoft
1Medialibrary
Nov 21, 2024
Feb 17, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL Injection exists in the MediaLibrary Free 4.0.12 component for Joomla! via the id parameter or the mid array parameter.
CVE-2010-2851
1Ordasoft
1Com Booklibrary
Apr 29, 2026
Jul 25, 2010
N/A· v4
N/A· v3
7.5 HIGH· v2
SQL injection vulnerability in the BookLibrary From Same Author (com_booklibrary) module 1.5 and possibly earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view actio...Show more
SQL injection vulnerability in the BookLibrary From Same Author (com_booklibrary) module 1.5 and possibly earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.Show less
CVE-2010-1522
1Ordasoft
1Com Booklibrary
Apr 29, 2026
Jul 2, 2010
N/A· v4
N/A· v3
7.5 HIGH· v2
Multiple SQL injection vulnerabilities in the BookLibrary Basic (com_booklibrary) component 1.5.3 before 1.5.3_2010_06_20 for Joomla! allow remote attackers to execute arbitrary SQL commands via the bid[] parameter in a...Show more
Multiple SQL injection vulnerabilities in the BookLibrary Basic (com_booklibrary) component 1.5.3 before 1.5.3_2010_06_20 for Joomla! allow remote attackers to execute arbitrary SQL commands via the bid[] parameter in a (1) lend_request or (2) save_lend_request action to index.php, the id parameter in a (3) mdownload or (4) downitsf action to index.php, or (5) the searchtext parameter in a search action to index.php.Show less
CVE-2009-3817
1Ordasoft
1Com Booklibrary
Apr 23, 2026
Oct 28, 2009
N/A· v4
N/A· v3
7.5 HIGH· v2
PHP remote file inclusion vulnerability in doc/releasenote.php in the BookLibrary (com_booklibrary) component 1.0 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path...Show more
PHP remote file inclusion vulnerability in doc/releasenote.php in the BookLibrary (com_booklibrary) component 1.0 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter, a different vector than CVE-2009-2637. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.Show less
CVE-2009-2637
1Ordasoft
1Com Booklibrary
Apr 23, 2026
Jul 28, 2009
N/A· v4
N/A· v3
7.5 HIGH· v2
PHP remote file inclusion vulnerability in toolbar_ext.php in the BookLibrary (com_booklibrary) component 1.5.2.4 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolut...Show more
PHP remote file inclusion vulnerability in toolbar_ext.php in the BookLibrary (com_booklibrary) component 1.5.2.4 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.Show less
CVE-2009-2635
1Ordasoft
1Com Realestatemanager
Apr 23, 2026
Jul 28, 2009
N/A· v4
N/A· v3
7.5 HIGH· v2
PHP remote file inclusion vulnerability in toolbar_ext.php in the RealEstateManager (com_realestatemanager) component 1.0 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig...Show more
PHP remote file inclusion vulnerability in toolbar_ext.php in the RealEstateManager (com_realestatemanager) component 1.0 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.Show less
CVE-2009-2634
1Ordasoft
1Com Medialibrary
Apr 23, 2026
Jul 28, 2009
N/A· v4
N/A· v3
7.5 HIGH· v2
PHP remote file inclusion vulnerability in toolbar_ext.php in the MediaLibrary (com_media_library) component 1.5.3 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolu...Show more
PHP remote file inclusion vulnerability in toolbar_ext.php in the MediaLibrary (com_media_library) component 1.5.3 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.Show less
CVE-2009-2633
1Ordasoft
1Com Vehiclemanager
Apr 23, 2026
Jul 28, 2009
N/A· v4
N/A· v3
7.5 HIGH· v2
PHP remote file inclusion vulnerability in toolbar_ext.php in the VehicleManager (com_vehiclemanager) component 1.0 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absol...Show more
PHP remote file inclusion vulnerability in toolbar_ext.php in the VehicleManager (com_vehiclemanager) component 1.0 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.Show less