CVE-2008-0799

2008-02-1521:00:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

41.7%

JSON

SQL injection vulnerability in index.php in the Quiz (com_quiz) 0.81 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a user_tst_shw action.

References

secunia.com/advisories/28980

www.securityfocus.com/bid/27808

www.exploit-db.com/exploits/5119