RSGallery2 (com_rsgallery2) component for Joomla! 3.0 release candidate 1

CPE Details

RSGallery2 (com_rsgallery2) component for Joomla! 3.0 release candidate 1
rsgallery2
com_rsgallery2
3.0
2012-08-10
11h56 +00:00
2012-08-20
16h10 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:rsgallery2:com_rsgallery2:3.0:rc1:*:*:*:*:*:*

Informations

Vendor

rsgallery2

Product

com_rsgallery2

Version

3.0

Update

rc1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2012-3554 2012-08-10 10h00 +00:00 SQL injection vulnerability in the RSGallery2 (com_rsgallery2) component before 2.3.0 for Joomla! 1.5.x, and before 3.2.0 for Joomla! 2.5.x, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
7.5
CVE-2012-4071 2012-08-10 10h00 +00:00 Cross-site scripting (XSS) vulnerability in the comments module in the RSGallery2 (com_rsgallery2) component before 2.3.0 for Joomla! 1.5.x, and before 3.2.0 for Joomla! 2.5.x, allows remote attackers to inject arbitrary web script or HTML via crafted BBCode markup in a comment.
4.3
CVE-2012-4235 2012-08-10 10h00 +00:00 The RSGallery2 (com_rsgallery2) component before 3.2.0 for Joomla! 2.5.x does not place index.html files in image directories, which allows remote attackers to list image filenames via a request for a directory URI.
5