Lucene search
MitreCVE-2010-4944HistoryOct 09, 2011 - 10:55 a.m.
CVE-2010-4944
2011-10-0910:55:22
CWE-89
mitre
web.nvd.nist.gov
31
security
sql injection
vulnerability
elite experts
mambo
joomla
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
30.1%
SQL injection vulnerability in the Elite Experts (com_elite_experts) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showExpertProfileDetailed action to index.php.
Affected configurations
Node
joomlacom_elite_experts
joomlajoomla\!
ORmambo-foundationmambo
| Vendor | Product | Version | CPE |
|---|---|---|---|
| joomla | com_elite_experts | * | cpe:2.3:a:joomla:com_elite_experts:*:*:*:*:*:*:*:* |
| joomla | joomla\! | * | cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:* |
| mambo-foundation | mambo | * | cpe:2.3:a:mambo-foundation:mambo:*:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2011-10-09 10:55:00
exploitdb
exploitdb
Joomla! Component Elite Experts - SQL Injection
2010-09-24 00:00:00
nvd
nvd
CVE-2010-4944
2011-10-09 10:55:22
cvelist
cvelist
CVE-2010-4944
2011-10-09 10:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
30.1%
Related for CVE-2010-4944