1 results (0.002 seconds)
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2CVE-2009-2102 – Joomla! Component Jumi - 'fileid' Blind SQL Injection
https://notcve.org/view.php?id=CVE-2009-2102
SQL injection vulnerability in the Jumi (com_jumi) component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php. Vulnerabilidad de inyección SQL en el componente Jumi (com_jumi) v2.0.3 y posiblemente otras versiones, para Joomla, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro "fileid" al index.php. • https://www.exploit-db.com/exploits/8968 http://osvdb.org/55112 http://secunia.com/advisories/35465 http://www.securityfocus.com/bid/35384 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •