It has been discovered that the extension "JobControl" (dmmjobcontrol) is susceptible to SQL Injection and Cross Site-Scripting.

It has been discovered that the extension "DRC News Comment" (news_comment) is susceptible to Arbitrary Code Execution and Cross Site-Scripting.

It has been discovered that the extension "Frontend User Registration" (sf_register) is vulnerable to Authentication Bypass.

It has been discovered that the extension "Download Center" (pits_downloadcenter) is susceptible to SQL Injection.

It has been discovered that the extension "Smallads" (ke_smallads) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Multishop" (multishop) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "CAB FAL search" (falsearch) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "restler" (restler) is susceptible to Arbitrary File Disclosure.

It has been discovered that the extension "Formhandler" (formhandler) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Recommend page " (pb_recommend_page) is susceptible to Cross-Site Scripting.