Lucene search

[email protected]CVE-2010-0692

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-0692

2022-10-0316:21:10

CWE-89

[email protected]

web.nvd.nist.gov

cve-2010-0692

sql injection

ip-tech jquarks

com_jquarks

joomla!

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.5%

JSON

SQL injection vulnerability in the IP-Tech JQuarks (com_jquarks) Component 0.2.3, and possibly earlier, for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

iptechinsidecom_jquarksMatch0.2.2

iptechinsidecom_jquarksMatch0.2.3

AND

joomlajoomla\!

CPENameOperatorVersion
iptechinside:com_jquarksiptechinside com jquarkseq0.2.2
iptechinside:com_jquarksiptechinside com jquarkseq0.2.3

CPE	Name	Operator	Version
iptechinside:com_jquarks	iptechinside com jquarks	eq	0.2.2
iptechinside:com_jquarks	iptechinside com jquarks	eq	0.2.3

References

secunia.com/advisories/38623

www.iptechinside.com/labs/news/show/6

www.osvdb.org/62332

www.securityfocus.com/bid/38203

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.5%

JSON

Related for CVE-2010-0692

prion1 cvelist1 nvd1