Lucene search

K
cve[email protected]CVE-2010-0461
HistoryJan 28, 2010 - 8:30 p.m.

CVE-2010-0461

2010-01-2820:30:01
CWE-89
web.nvd.nist.gov
36
cve-2010-0461
sql injection
com_casino
joomla
vulnerability
remote attackers
nvd

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.2%

SQL injection vulnerability in the casino (com_casino) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a (1) category or (2) player action to index.php.

Affected configurations

NVD
Node
joomlacom_casinoMatch1.0
AND
joomlajoomla

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.2%

Related for CVE-2010-0461