CVE-2009-4199 – Joomla! Component com_mosres - Multiple SQL Injections

https://notcve.org/view.php?id=CVE-2009-4199

04 Dec 2009 — Multiple SQL injection vulnerabilities in the Mambo Resident (aka Mos Res or com_mosres) component 1.0f for Mambo and Joomla!, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) property_uid parameter in a viewproperty action to index.php and the (2) regID parameter in a showregion action to index.php. Múltiples vulnerabilidades de inyección SQL en el componente Mambo Resident (aka Mos Res or com_mosres) v1.0f para Mambo y Joomla!, cuando está deshabilita... • https://www.exploit-db.com/exploits/8872 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •