CVE-2008-0652

2008-02-07T21:00:00
ID CVE-2008-0652
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:30:00

Description

SQL injection vulnerability in index.php in the Downloads (com_downloads) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the filecatid parameter in a selectfolder action.