Harmis Technology JE Messenger 1.2.2 for Joomla!
Approved changes feed: RSS · Atom
cpe:2.3:a:harmistechnology:je_messenger:1.2.2:*:*:*:*:joomla\!:*:*
part: a version: 1.2.2 update: *
| Vendor | Harmistechnology (338a2b50-3242-5ba2-b318-c37e1d8f6f08) |
|---|---|
| Product | Je Messenger (b9f1ccbf-3217-531a-8a5c-629ceb7d4ec9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | joomla! |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-9922 |
vulnerable | 2026-06-08 05:14:26.422860 |
Details available
MEDIUM (5.8)
An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Directory Traversal allows read access to arbitrary files.
Published: 2019-03-29T14:07:13.000Z
Updated: 2024-08-04T22:01:55.178Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-9921 |
vulnerable | 2026-06-08 05:14:26.422530 |
Details available
HIGH (7.7)
An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to read information that should only be accessible by a different user.
Published: 2019-03-29T14:06:43.000Z
Updated: 2024-08-04T22:01:55.139Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-9920 |
vulnerable | 2026-06-08 05:14:26.422086 |
Details available
HIGH (7.7)
An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to perform an action within the context of the account of another user.
Published: 2019-03-29T14:06:20.000Z
Updated: 2024-08-04T22:01:55.178Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-9919 |
vulnerable | 2026-06-08 05:14:26.421736 |
Details available
MEDIUM (5.4)
An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to craft messages in a way that JavaScript gets executed on the side of the receiving user when the message is opened, aka XSS.
Published: 2019-03-29T14:06:03.000Z
Updated: 2024-08-04T22:01:55.195Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-9918 |
vulnerable | 2026-06-08 05:14:26.421292 |
Details available
HIGH (8.5)
An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Input does not get validated and queries are not written in a way to prevent SQL injection. Therefore arbitrary SQL-Statements can be executed in the database.
Published: 2019-03-29T14:05:45.000Z
Updated: 2024-08-04T22:01:55.186Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.