CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 4CVE-2008-6149 – Joomla! Component mDigg 2.2.8 - 'category' SQL Injection
https://notcve.org/view.php?id=CVE-2008-6149
SQL injection vulnerability in the mDigg (com_mdigg) component 2.2.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cagtegory parameter in a story_lists action to index.php. Una vulnerabilidad de inyección de SQL en el componente mDigg (com_mdigg) 2.2.8 para Joomla! permite a atacantes remotos ejecutar comandos SQL a través del parámetro cagtegory en una acción story_lists en index.php. • https://www.exploit-db.com/exploits/7574 https://www.exploit-db.com/exploits/17464 http://secunia.com/advisories/33306 http://www.osvdb.org/51005 http://www.securityfocus.com/archive/1/499618/100/0/threaded http://www.securityfocus.com/bid/33009 https://exchange.xforce.ibmcloud.com/vulnerabilities/47612 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •