1 results (0.002 seconds)
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1CVE-2008-2564 – Joomla! Component Jotloader 1.2.1.a - Blind SQL Injection
https://notcve.org/view.php?id=CVE-2008-2564
SQL injection vulnerability in the JotLoader (com_jotloader) component 1.2.1.a and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter to index.php. Vulnerabilidad de injección SQL en el componente JotLoader (com_jotloader) 1.2.1.a y anteriores de Joomla! permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro cid en index.php. • https://www.exploit-db.com/exploits/5737 http://secunia.com/advisories/30541 http://www.securityfocus.com/bid/29554 https://exchange.xforce.ibmcloud.com/vulnerabilities/42840 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •